High severity8.8NVD Advisory· Published Nov 19, 2024· Updated Apr 15, 2026
CVE-2024-11075
CVE-2024-11075
Description
A vulnerability in the Incoming Goods Suite allows a user with unprivileged access to the underlying system (e.g. local or via SSH) a privilege escalation to the administrative level due to the usage of component vendor Docker images running with root permissions. Exploiting this misconfiguration leads to the fact that an attacker can gain administrative control. over the whole system.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDFnvd
- sick.com/psirtnvd
- www.cisa.gov/resources-tools/resources/ics-recommended-practicesnvd
- www.first.org/cvss/calculator/3.1nvd
- www.sick.com/.well-known/csaf/white/2024/sca-2024-0005.jsonnvd
- www.sick.com/.well-known/csaf/white/2024/sca-2024-0005.pdfnvd
News mentions
0No linked articles in our index yet.