SICK Media Server and Field Analytics Credential Disclosure Vulnerability

A vulnerability exists in SICK Media Server versions through 1.4 and in all versions of SICK Field Analytics. The issue arises from files in the source code that contain login credentials for the admin user and the property configuration password. This exposure allows an attacker to gain full access to the application. Additionally, all communication with the REST API in the affected Media Server versions is unencrypted, creating a risk of interception and unauthorized access to sensitive information.

Impact

Exploitation of this vulnerability allows for unauthorized access to the application, with the potential to modify application settings and disrupt normal operations.

Remediation

Users of SICK Media Server are strongly recommended to upgrade to version 1.5 or later and to change default passwords. For SICK Field Analytics, ensure that only trusted entities have access to the device and apply general security measures as recommended in the SICK Operating Guidelines and ICS-CERT practices.