CVE-2025-59460

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-59460
The system is deployed in its default state, with configuration settings that do not comply with the latest best practices for restricting access. This increases the risk of unauthorised connections.

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://sick.com/psirt Vendor Advisory
https://www.cisa.gov/resources-tools/resources/ics-recommended-practices US Government Resource
https://www.first.org/cvss/calculator/3.1 Not Applicable
https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0013.json Vendor Advisory
https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0013.pdf Vendor Advisory
https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf Product
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:sick:tloc100-100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sick:tloc100-100:-:*:*:*:*:*:*:*
History

03 Nov 2025, 19:42

Type Values Removed Values Added
First Time Sick tloc100-100
Sick tloc100-100 Firmware
Sick
CPE cpe:2.3:o:sick:tloc100-100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sick:tloc100-100:-:*:*:*:*:*:*:*
References () https://sick.com/psirt - () https://sick.com/psirt - Vendor Advisory
References () https://www.cisa.gov/resources-tools/resources/ics-recommended-practices - () https://www.cisa.gov/resources-tools/resources/ics-recommended-practices - US Government Resource
References () https://www.first.org/cvss/calculator/3.1 - () https://www.first.org/cvss/calculator/3.1 - Not Applicable
References () https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0013.json - () https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0013.json - Vendor Advisory
References () https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0013.pdf - () https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0013.pdf - Vendor Advisory
References () https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf - () https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf - Product
Information

Published : 2025-10-27 11:15

Updated : 2025-11-03 19:42

NVD link : CVE-2025-59460

Mitre link : CVE-2025-59460

CVE.ORG link : CVE-2025-59460

JSON object : View

Products Affected

sick

  • tloc100-100_firmware
  • tloc100-100
CWE
CWE-1391

Use of Weak Credentials