VDB
CVE-2025-32472
CVE-2025-32472
PUBLISHED
CVSS 5.300000190734863 MEDIUM
The multiScan and picoScan are vulnerable to a denial-of-service (DoS) attack. A remote attacker can exploit this vulnerability by conducting a Slowloris-type attack, causing the web page to become unresponsive.
EPSS 0.99% · 77.3th percentile
Risk Scores
CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS Score
0.99%
77.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SICK AG | SICK picoScan1XX | all versions |
| SICK AG | SICK multiScan1XX | all versions |
Exploit Intelligence
- CIRCL seen: CVE-2025-32472 (circl-sighting)
- CIRCL seen: CVE-2025-32472 (circl-sighting)
- CIRCL seen: CVE-2025-32472 (circl-sighting)
- https://sick.com/psirt (circl)
- https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF (circl)
- https://www.cisa.gov/resources-tools/resources/ics-recommended-practices (circl)
- https://www.first.org/cvss/calculator/3.1 (circl)
- https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0006.pdf (circl)
- https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0006.json (circl)
Timeline
- Apr 28, 2025 CVE Published
- Apr 28, 2025 PoC Published
- Apr 28, 2025 PoC Published
- Apr 28, 2025 PoC Published
- Apr 29, 2025 EPSS Score
- May 11, 2025 EPSS Score
- May 23, 2025 EPSS Score
- Jun 4, 2025 EPSS Score
- Jun 6, 2025 Coalition ESS Score
- Jun 16, 2025 EPSS Score
- Jun 28, 2025 EPSS Score
- Jul 10, 2025 EPSS Score
References
- https://sick.com/psirt url
- https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF url
- https://www.cisa.gov/resources-tools/resources/ics-recommended-practices url
- https://www.first.org/cvss/calculator/3.1 url
- https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0006.pdf vendor-advisory
- https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0006.json vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2025-32472 advisory