Vulnerabilities > Sick > Package Analytics

DATE CVE VULNERABILITY TITLE RISK
2020-07-29 CVE-2020-2078 Insufficiently Protected Credentials vulnerability in Sick Package Analytics 04.0.0/04.1.1
Passwords are stored in plain text within the configuration of SICK Package Analytics software up to and including V04.1.1.
network
low complexity
sick CWE-522
6.5
6.5
2020-07-29 CVE-2020-2077 Incorrect Default Permissions vulnerability in Sick Package Analytics 04.0.0
SICK Package Analytics software up to and including version V04.0.0 are vulnerable due to incorrect default permissions settings.
network
low complexity
sick CWE-276
7.5
7.5
2020-07-29 CVE-2020-2076 Missing Authentication for Critical Function vulnerability in Sick Package Analytics 04.0.0
SICK Package Analytics software up to and including version V04.0.0 are vulnerable to an authentication bypass by directly interfacing with the REST API.
network
low complexity
sick CWE-306
critical
 9.8
9.8