| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-9913 | Cross Site Scripting: Session Hijacking | SICK AG | Baggage Analytics | Medium | 4.5 | 2025-10-06 06:40:50 | Deep Dive |
| CVE-2025-49200 | Unencrypted backup contains sensitive information | SICK AG | SICK Field Analytics | Medium | 6.5 | 2025-06-12 14:27:58 | Deep Dive |
| CVE-2025-49199 | Backup files can be modified and uploaded | SICK AG | SICK Field Analytics | High | 8.8 | 2025-06-12 14:26:33 | Deep Dive |
| CVE-2025-49198 | Poor quality of randomness in authorization tokens | SICK AG | SICK Media Server | Low | 3.1 | 2025-06-12 14:24:56 | Deep Dive |
| CVE-2025-49197 | Deprecated TLS version supported | SICK AG | SICK Media Server | Medium | 6.5 | 2025-06-12 14:23:04 | Deep Dive |
| CVE-2025-49196 | Deprecated TLS version supported | SICK AG | SICK Field Analytics | Medium | 6.5 | 2025-06-12 14:20:53 | Deep Dive |
| CVE-2025-49195 | No protection against brute-force attacks | SICK AG | SICK Media Server | Medium | 5.3 | 2025-06-12 14:19:22 | Deep Dive |
| CVE-2025-49194 | Unencrypted communication | SICK AG | SICK Media Server | High | 7.5 | 2025-06-12 14:17:36 | Deep Dive |
| CVE-2025-49193 | Missing HTTP Security Headers | SICK AG | Field Analytics | Medium | 4.2 | 2025-06-12 14:15:07 | Deep Dive |
| CVE-2025-49192 | Clickjacking | SICK AG | SICK Field Analytics | Medium | 4.3 | 2025-06-12 14:12:12 | Deep Dive |
| CVE-2025-49191 | Dashboards and iFrames can link malicious web content | SICK AG | SICK Field Analytics | Medium | 4.8 | 2025-06-12 14:08:03 | Deep Dive |
| CVE-2025-49190 | Server-Side Request Forgery | SICK AG | SICK Field Analytics | Medium | 4.3 | 2025-06-12 14:06:00 | Deep Dive |
| CVE-2025-49189 | Cookie missing HttpOnly flag | SICK AG | SICK Media Server | Medium | 5.3 | 2025-06-12 14:03:40 | Deep Dive |
| CVE-2025-49188 | Sensitive Data in URL | SICK AG | SICK Field Analytics | Medium | 5.3 | 2025-06-12 14:02:37 | Deep Dive |
| CVE-2025-49187 | User enumeration | SICK AG | SICK Field Analytics | Medium | 5.3 | 2025-06-12 13:29:46 | Deep Dive |
| CVE-2025-49186 | No brute-force protection | SICK AG | Field Analytics | Medium | 5.3 | 2025-06-12 13:27:43 | Deep Dive |
| CVE-2025-49185 | Stored Cross-Site-Script | SICK AG | SICK Field Analytics | Medium | 5.5 | 2025-06-12 13:25:43 | Deep Dive |
| CVE-2025-49184 | Information disclosure to unauthorized user | SICK AG | Field Analytics | High | 7.5 | 2025-06-12 13:24:07 | Deep Dive |
| CVE-2025-49183 | Unencrypted communication (HTTP) | SICK AG | SICK Media Server | High | 7.5 | 2025-06-12 13:21:57 | Deep Dive |
| CVE-2025-49182 | Credential disclosure | SICK AG | SICK Media Server | High | 7.5 | 2025-06-12 13:15:02 | Deep Dive |