CVE-2025-59460

Summary

The system is deployed in its default state, with configuration settings that do not comply with the latest best practices for restricting access. This increases the risk of unauthorised connections.

Affected Software

VendorProductVersion RangeStatus
SICK AGTLOC100-100 with Firmware <7.1.10 < <7.1.1affected
SICK AGTLOC100-100 with Firmware >=7.1.1>=7.1.1unaffected

Weaknesses

  • CWE-1391: CWE-1391 Use of Weak Credentials

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References