CVE-2025-59460

Unsecure access configuration

Description

The system is deployed in its default state, with configuration settings that do not comply with the latest best practices for restricting access. This increases the risk of unauthorised connections.

INFO

Published Date :

2025-10-27T10:10:31.105Z

Last Modified :

2025-10-27T18:10:18.984Z

Source :

SICK AG

AFFECTED PRODUCTS

The following products are affected by CVE-2025-59460 vulnerability.

Vendors	Products
Sick	Tloc100-100 Tloc100-100 Firmware

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-59460.

URL	Resource
https://sick.com/psirt
https://www.cisa.gov/resources-tools/resources/ics-recommended-practices
https://www.first.org/cvss/calculator/3.1
https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0013.json
https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0013.pdf
https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact