Primary

Context

SICK FTP Server Brute-Force Vulnerability

Vulnerability

A vulnerability exists in the FTP server's login mechanism, which fails to limit authentication attempts. This flaw allows attackers to brute-force user passwords, potentially compromising the FTP server.

Impact

Successful exploitation enables brute-force attacks on user passwords, which can lead to unauthorized access on the FTP server.

Remediation

Users are advised to use strong passwords with at least eight characters, including letters, numbers, capital letters, and symbols. Additionally, ensure that only trusted entities have access to the device. Follow general security practices to operate the product in a protected IT environment. The 'SICK Operating Guidelines' and 'ICS-CERT recommended practices on Industrial Security' can provide guidance on implementing these security measures.

Added: Jun 12, 2025, 3:43 PM

Updated: Jun 12, 2025, 6:08 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SICK FTP Server Brute-Force Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating