CVE-2023-31412

The LMS5xx uses weak hash generation methods, resulting in the creation of insecure hashs. If an attacker manages to retrieve the hash, it could lead to collision attacks and the potential retrieval of the password.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://sick.com/.well-known/csaf/white/2023/sca-2023-0007.json	Vendor Advisory
https://sick.com/.well-known/csaf/white/2023/sca-2023-0007.pdf	Vendor Advisory
https://sick.com/psirt	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:h:sick:lms531:-:*:*:*:*:*:*:*

cpe:2.3:o:sick:lms531_firmware:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:h:sick:lms511:-:*:*:*:*:*:*:*

cpe:2.3:o:sick:lms511_firmware:*:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:h:sick:lms500:-:*:*:*:*:*:*:*

cpe:2.3:o:sick:lms500_firmware:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2023-08-24 19:15

Updated : 2023-08-30 14:34

NVD link : CVE-2023-31412

Mitre link : CVE-2023-31412

CVE.ORG link : CVE-2023-31412

JSON object : View

Products Affected

sick

lms511
lms500_firmware
lms531_firmware
lms531
lms511_firmware
lms500

CWE

CWE-916

Use of Password Hash With Insufficient Computational Effort

{"id": "CVE-2023-31412", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "psirt@sick.de", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2023-08-24T19:15:33.977", "references": [{"url": "https://sick.com/.well-known/csaf/white/2023/sca-2023-0007.json", "tags": ["Vendor Advisory"], "source": "psirt@sick.de"}, {"url": "https://sick.com/.well-known/csaf/white/2023/sca-2023-0007.pdf", "tags": ["Vendor Advisory"], "source": "psirt@sick.de"}, {"url": "https://sick.com/psirt", "tags": ["Vendor Advisory"], "source": "psirt@sick.de"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-916"}]}], "descriptions": [{"lang": "en", "value": "The LMS5xx uses weak hash generation methods, resulting in the creation of insecure hashs. If an attacker manages to retrieve the hash, it could lead to collision attacks and the potential retrieval of the password."}], "lastModified": "2023-08-30T14:34:19.237", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms531:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "44AF5B79-0A15-4195-80F3-7304D8000D1A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms531_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5943B624-D730-4679-8118-CD29CFB4CD1C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms511:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9ABE387A-9B29-43DE-A4F1-EDD3CB8BEB6F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms511_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F113FA6F-F3CC-43C7-97A4-D40F8F1F5E9F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms500:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B8A37D4F-969C-4496-BD10-13C903A41305"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms500_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9DF24DAB-D1E4-4B14-B9CE-BFB52F9BDBC7"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt@sick.de"}