What is GHSA-jw79-3rh8-v6jv?

GHSA-jw79-3rh8-v6jv is a security advisory published by GitHub Security Advisories with High severity. Unauthenticated endpoints in the SICK ICR890-4 could allow an unauthenticated remote attacker to...

Which CVE IDs does GHSA-jw79-3rh8-v6jv cover?

GHSA-jw79-3rh8-v6jv covers the following CVE IDs: CVE-2023-35696. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-jw79-3rh8-v6jv?

GHSA-jw79-3rh8-v6jv has a CVSS v3 base score of 7.5, published by GitHub Security Advisories.

GHSA-jw79-3rh8-v6jvHighCVSS 7.5

Unauthenticated endpoints in the SICK ICR890-4 could allow an unauthenticated remote attacker to...

Vendor

GitHub Security Advisories

Published

July 10, 2023

Last Modified

June 1, 2026

🔗 CVE IDs covered (1)

CVE-2023-35696 →

📋 Description

Unauthenticated endpoints in the SICK ICR890-4 could allow an unauthenticated remote attacker to retrieve sensitive information about the device via HTTP requests.

🔗 References (5)

https://nvd.nist.gov/vuln/detail/CVE-2023-35696
https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json
https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf
https://sick.com/psirt
https://github.com/advisories/GHSA-jw79-3rh8-v6jv