CVE-2025-58580 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An API endpoint allows arbitrary log entries to be created via POST request. Without sufficient validation of the input data, an attacker can cre…
Medium CVSS: 6.5

CVE-2025-58580

An API endpoint allows arbitrary log entries to be created via POST request. Without sufficient validation of the input data, an attacker can create manipulated log entries and thus falsify or dilute logs, for example.
Vendor
Sick
Product
Enterprise Analytics
CWE
CWE-117
Yayın Tarihi
2025-10-06 07:15:34
Güncelleme
2026-01-27 17:27:31
Source Identifier
psirt@sick.de
KEV Date Added
-

Kategoriler

CWE-117 Enterprise Analytics MEDIUM Sick 2025

Referanslar

https://sick.com/psirt https://www.cisa.gov/resources-tools/resources/ics-recommended-practices https://www.first.org/cvss/calculator/3.1 https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0010.json https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0010.pdf https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf