Vulnerabilities > CVE-2021-32497 - Unspecified vulnerability in Sick Sopas Engineering Tool

CVSS 9.3 - CRITICAL

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

sick

critical

NVD

Published: 2021-12-17

Updated: 2021-12-27

Summary

SICK SOPAS ET before version 4.8.0 allows attackers to wrap any executable file into an SDD and provide this to a SOPAS ET user. When a user starts the emulator the executable is run without further checks.

Vulnerable Configurations

Part	Description	Count
Application	Sick Sick Sopas Engineering Tool *	1

References

https://sick.com/psirt#advisories