Critical severity9.1NVD Advisory· Published Oct 17, 2024· Updated Apr 15, 2026
CVE-2024-10025
CVE-2024-10025
Description
A vulnerability in the .sdd file allows an attacker to read default passwords stored in plain text within the code. By exploiting these plaintext credentials, an attacker can log into affected SICK products as an “Authorized Client” if the customer has not changed the default password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Patches
Vulnerability mechanics
References
6- cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDFnvd
- sick.com/psirtnvd
- www.cisa.gov/resources-tools/resources/ics-recommended-practicesnvd
- www.first.org/cvss/calculator/3.1nvd
- www.sick.com/.well-known/csaf/white/2024/sca-2024-0003.jsonnvd
- www.sick.com/.well-known/csaf/white/2024/sca-2024-0003.pdfnvd
News mentions
0No linked articles in our index yet.