Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Oct 27, 2025· Updated Oct 27, 2025

API does not require authentication

CVE-2025-59461

Description

A remote unauthenticated attacker may use the unauthenticated C++ API to access or modify sensitive data and disrupt services.

Affected products

1

SICK AG/TLOC100-100 all Firmware versionsv5
Range: all versions

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

6

www.sick.com/.well-known/csaf/white/2025/sca-2025-0013.pdfmitrevendor-advisory
sick.com/psirtmitrex_SICK PSIRT Security Advisories
www.cisa.gov/resources-tools/resources/ics-recommended-practicesmitrex_ICS-CERT recommended practices on Industrial Security
www.first.org/cvss/calculator/3.1mitrex_CVSS v3.1 Calculator
www.sick.com/.well-known/csaf/white/2025/sca-2025-0013.jsonmitrex_The canonical URL.
www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdfmitrex_SICK Operating Guidelines

News mentions

0

No linked articles in our index yet.