CVE-2025-58590

Summary

It's possible to brute force folders and files, what can be used by an attacker to steal sensitve information.

Affected Software

VendorProductVersion RangeStatus
SICK AGBaggage Analytics0 <= <= 4.6.1affected
SICK AGTire Analytics0 <= <= 4.6.1affected
SICK AGPackage Analytics0 <= <= 4.6.1affected
SICK AGLogistic Diagnostic Analytics0 <= <= 4.6.1affected
SICK AGBaggage Analytics4.6.2affected
SICK AGTire Analytics4.6.2affected
SICK AGPackage Analytics4.6.2affected
SICK AGLogistic Diagnostic Analytics4.6.2affected
SICK AGBaggage Analytics4.6.2affected
SICK AGTire Analytics4.6.2affected
SICK AGPackage Analytics4.6.2affected
SICK AGLogistic Diagnostic Analytics4.6.2affected

Weaknesses

  • CWE-22: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References