FKIE_CVE-2026-2330

Vulnerability from fkie_nvd - Published: 2026-03-06 08:16 - Updated: 2026-03-09 13:35
Severity ?
9.4 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Summary
An attacker may access restricted filesystem areas on the device via the CROWN REST interface due to incomplete whitelist enforcement. Certain directories intended for internal testing were not covered by the whitelist and are accessible without authentication. An unauthenticated attacker could place a manipulated parameter file that becomes active after a reboot, allowing modification of critical device settings, including network configuration and application parameters.
References
psirt@sick.dehttps://www.cisa.gov/resources-tools/resources/ics-recommended-practices
psirt@sick.dehttps://www.first.org/cvss/calculator/3.1
psirt@sick.dehttps://www.sick.com/.well-known/csaf/white/2026/sca-2026-0006.json
psirt@sick.dehttps://www.sick.com/.well-known/csaf/white/2026/sca-2026-0006.pdf
psirt@sick.dehttps://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf
psirt@sick.dehttps://www.sick.com/psirt
Impacted products
Vendor Product Version
To clipboard 

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An attacker may access restricted filesystem areas on the device via the CROWN REST interface due to incomplete whitelist enforcement. Certain directories intended for internal testing were not covered by the whitelist and are accessible without authentication. An unauthenticated attacker could place a manipulated parameter file that becomes active after a reboot, allowing modification of critical device settings, including network configuration and application parameters."
    },
    {
      "lang": "es",
      "value": "Un atacante puede acceder a \u00e1reas restringidas del sistema de archivos en el dispositivo a trav\u00e9s de la interfaz REST de CROWN debido a una aplicaci\u00f3n incompleta de la lista blanca. Ciertos directorios destinados a pruebas internas no estaban cubiertos por la lista blanca y son accesibles sin autenticaci\u00f3n. Un atacante no autenticado podr\u00eda colocar un archivo de par\u00e1metros manipulado que se activa despu\u00e9s de un reinicio, permitiendo la modificaci\u00f3n de configuraciones cr\u00edticas del dispositivo, incluyendo la configuraci\u00f3n de red y los par\u00e1metros de la aplicaci\u00f3n."
    }
  ],
  "id": "CVE-2026-2330",
  "lastModified": "2026-03-09T13:35:34.633",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.4,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "LOW",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.5,
        "source": "psirt@sick.de",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-03-06T08:16:27.253",
  "references": [
    {
      "source": "psirt@sick.de",
      "url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
    },
    {
      "source": "psirt@sick.de",
      "url": "https://www.first.org/cvss/calculator/3.1"
    },
    {
      "source": "psirt@sick.de",
      "url": "https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0006.json"
    },
    {
      "source": "psirt@sick.de",
      "url": "https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0006.pdf"
    },
    {
      "source": "psirt@sick.de",
      "url": "https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf"
    },
    {
      "source": "psirt@sick.de",
      "url": "https://www.sick.com/psirt"
    }
  ],
  "sourceIdentifier": "psirt@sick.de",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-552"
        }
      ],
      "source": "psirt@sick.de",
      "type": "Secondary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.