CVE-2024-10773

Critical

The product is vulnerable to pass-the-hash attacks in combination with hardcoded credentials of hidden user levels. This means that an…

SICK AG·CWE-912·Published 2024-12-06

CVSS

9.0

EPSS

0.01

KEV

Exploits

cve.orgen

218 chars

The product is vulnerable to pass-the-hash attacks in combination with hardcoded credentials of hidden user levels. This means that an attacker can log in with the hidden user levels and gain full access to the device.

NVDen

218 chars

NVDes

258 chars

El producto es vulnerable a ataques de tipo pass-the-hash en combinación con credenciales codificadas de niveles de usuario ocultos. Esto significa que un atacante puede iniciar sesión con los niveles de usuario ocultos y obtener acceso total al dispositivo.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	9.0	—	—	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
3.1	Secondary	NVD	9.0	2.2	6.0	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H