Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SICK AG — Vulnerabilities & Security Advisories 113

Browse all 113 CVE security advisories affecting SICK AG. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SICK AG operates as a leading manufacturer of industrial sensors and safety systems, primarily serving automation and logistics sectors. Its product portfolio includes photoelectric sensors, laser scanners, and safety controllers designed for factory environments. Security analysis reveals a significant historical footprint of vulnerabilities, with 113 Common Vulnerabilities and Exposures (CVEs) currently documented. These flaws predominantly involve remote code execution, cross-site scripting, and privilege escalation, often stemming from web-based management interfaces or embedded software components. Notable incidents include critical flaws allowing unauthorized access to device configurations, potentially compromising industrial operations. The company has addressed many issues through firmware updates, yet the high volume of past vulnerabilities highlights persistent challenges in securing embedded industrial IoT devices. This track record underscores the necessity for rigorous security testing in critical infrastructure components, as exploitation could lead to operational disruptions or physical safety hazards in automated facilities.

Found 9 results / 113Clear Filters
Top products by SICK AG: TDC-X401GL Baggage Analytics APU0200 SICK Field Analytics SICK FTMG-ESD15AXX AIR FLOW SENSOR ICR890-4 SICK Media Server SICK InspectorP61x Enterprise Analytics LMS5xx Incoming Goods Suite TLOC100-100 all Firmware versions Field Analytics SICK DL100-2xxxxxxx SICK Lector85x SICK LMS1000 SICK Lector8xx EventCam App SICK FLX0-GPNT100 SICK FLX3-CPUC200 SICK multiScan1XX SICK MEAC300 SICK Incoming Goods Suite SICK CLV6xx SICK MSC800 TLOC100-100 with Firmware <7.1.1 TLOC100-100 FX0-GMOD00000 SIM1012 UE410-EN3 FLEXI ETHERNET GATEW.
CVE IDTitleCVSSSeverityPublished
CVE-2025-49200 Unencrypted backup contains sensitive information — SICK Field AnalyticsCWE-200 6.5 Medium2025-06-12
CVE-2025-49199 Backup files can be modified and uploaded — SICK Field AnalyticsCWE-345 8.8 High2025-06-12
CVE-2025-49196 Deprecated TLS version supported — SICK Field AnalyticsCWE-327 6.5 Medium2025-06-12
CVE-2025-49192 Clickjacking — SICK Field AnalyticsCWE-1021 4.3 Medium2025-06-12
CVE-2025-49191 Dashboards and iFrames can link malicious web content — SICK Field AnalyticsCWE-1021 4.8 Medium2025-06-12
CVE-2025-49190 Server-Side Request Forgery — SICK Field AnalyticsCWE-918 4.3 Medium2025-06-12
CVE-2025-49188 Sensitive Data in URL — SICK Field AnalyticsCWE-598 5.3 Medium2025-06-12
CVE-2025-49187 User enumeration — SICK Field AnalyticsCWE-204 5.3 Medium2025-06-12
CVE-2025-49185 Stored Cross-Site-Script — SICK Field AnalyticsCWE-79 5.5 Medium2025-06-12

This page lists every published CVE security advisory associated with SICK AG. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.