VDB
SCA-2025-0006
SCA-2025-0006
PUBLISHED
CVSS 5.300000190734863 MEDIUM
SICK has identified a Denial of Service vulnerability (CVE-2025-32472) in picoScan and multiScan, which can cause the web page to become unresponsive. Due to their architectural design, these products are not affected by the other vulnerabilities listed in this advisory. Currently SICK is not aware of any public exploits specifically targeting the vulnerability. SICK recommends applying the mitigation for CVE-2025-32472.
Risk Scores
CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SICK picoScan1XX all versions | ||
| SICK picoScan1XX Firmware all versions | ||
| SICK multiScan1XX all versions | ||
| SICK multiScan1XX Firmware all versions |
Exploit Intelligence
- A CodeQL query to find CVE 2022-35737 (github-poc-repo)
- A CodeQL query to find CVE 2022-35737 (github-poc-repo)
- A CodeQL query to find CVE 2022-35737 (github-poc)
- A CodeQL query to find CVE 2022-35737 (github-poc)
- Stranger strings: CVE-2022-35737 (github-poc)
- Stranger strings: CVE-2022-35737 (github-poc)
- RenukaSelvar/lua_CVE-2020-24370_AfterPatch (github-poc)
- RenukaSelvar/lua_CVE-2020-24370_AfterPatch (github-poc)
- RenukaSelvar/lua_CVE-2020-24370 (github-poc)
- RenukaSelvar/lua_CVE-2020-24370 (github-poc)
…and 25 more exploits
Timeline
- Apr 28, 2025 CVE Published
References
- https://sick.com/psirt url
- https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf url
- https://www.cisa.gov/resources-tools/resources/ics-recommended-practices url
- https://www.first.org/cvss/calculator/3.1 url
- https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0006.json advisory