Login Sign Up

CVE-2023-5246

8.8 HIGH
Authentication Bypass

📋 TL;DR

This vulnerability allows unauthenticated remote attackers to bypass authentication on SICK Flexi Soft Gateways by capturing and replaying authentication data. Attackers can potentially compromise availability, integrity, and confidentiality of affected gateways. Organizations using SICK Flexi Soft Gateways with specific part numbers are affected.

💻 Affected Systems

Products:
  • SICK Flexi Soft Gateways
Versions: All versions with vulnerable part numbers
Operating Systems: Gateway firmware
Default Config Vulnerable: ⚠️ Yes
Notes: Specific part numbers: 1044073, 1127717, 1130282, 1044074, 1121597, 1099832, 1051432, 1127487, 1069070, 1112296, 1044072, 1121596, 1099830

📦 What is this software?

Fx0 Gent00000 Firmware by Sick

View all CVEs affecting Fx0 Gent00000 Firmware →

Fx0 Gent00010 Firmware by Sick

View all CVEs affecting Fx0 Gent00010 Firmware →

Fx0 Gent00030 Firmware by Sick

View all CVEs affecting Fx0 Gent00030 Firmware →

Fx0 Gepr00000 Firmware by Sick

View all CVEs affecting Fx0 Gepr00000 Firmware →

Fx0 Gepr00010 Firmware by Sick

View all CVEs affecting Fx0 Gepr00010 Firmware →

Fx0 Get00000 Firmware by Sick

View all CVEs affecting Fx0 Get00000 Firmware →

Fx0 Get00010 Firmware by Sick

View all CVEs affecting Fx0 Get00010 Firmware →

Fx0 Gmod00000 Firmware by Sick

View all CVEs affecting Fx0 Gmod00000 Firmware →

Fx0 Gmod00010 Firmware by Sick

View all CVEs affecting Fx0 Gmod00010 Firmware →

Fx0 Gmod00030 Firmware by Sick

View all CVEs affecting Fx0 Gmod00030 Firmware →

Fx0 Gpnt00000 Firmware by Sick

View all CVEs affecting Fx0 Gpnt00000 Firmware →

Fx0 Gpnt00010 Firmware by Sick

View all CVEs affecting Fx0 Gpnt00010 Firmware →

Fx0 Gpnt00030 Firmware by Sick

View all CVEs affecting Fx0 Gpnt00030 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise allowing attackers to manipulate industrial processes, steal sensitive data, or disrupt operations.

🟠

Likely Case

Unauthorized access to gateway configuration and control functions, potentially leading to operational disruption.

🟢

If Mitigated

Limited impact if gateways are isolated in protected networks with strict access controls.

🌐 Internet-Facing: HIGH - Unauthenticated remote exploitation allows direct attacks from internet.
🏢 Internal Only: HIGH - Even internally, unauthenticated access bypasses security controls.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Capture-replay attacks typically require network access to intercept authentication traffic.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check vendor advisory for specific firmware versions

Vendor Advisory: https://sick.com/psirt

Restart Required: Yes

Instructions:

1. Check affected part numbers. 2. Download latest firmware from SICK support portal. 3. Apply firmware update following vendor documentation. 4. Restart gateway.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate gateways in protected network segments with strict access controls.

Access Control Lists

all

Implement strict network ACLs to limit access to gateway management interfaces.

🧯 If You Can't Patch

  • Segment gateways in isolated VLANs with no internet access
  • Implement strict firewall rules allowing only trusted IPs to access gateway interfaces

🔍 How to Verify

Check if Vulnerable:

Check gateway part number against affected list and verify firmware version.

Check Version:

Check via SICK Flexi Soft configuration interface or consult device documentation.

Verify Fix Applied:

Confirm firmware version matches patched version from vendor advisory.

📡 Detection & Monitoring

Log Indicators:

  • Multiple failed authentication attempts followed by successful access
  • Authentication from unexpected IP addresses

Network Indicators:

  • Repeated authentication packets from same source
  • Unusual traffic patterns to gateway management ports

SIEM Query:

source_ip=gateway AND (event_type=auth AND result=success) FROM suspicious_ip

📊 Metadata

CVE ID: CVE-2023-5246
CVSS v3 Score: 8.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-287
Published: October 23, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-5246, you might also want to check these:

CVE-2024-27767 10.0

CVE-2024-27767 is an authentication bypass vulnerability that allows attackers to gain unauthorized ...

Same vulnerability type (CWE-287)
CVE-2026-24898 10.0

OpenEMR versions before 8.0.0 contain an unauthenticated token disclosure vulnerability in the MedEx...

Same vulnerability type (CWE-287)
CVE-2026-20127 10.0

This critical authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller and Manager al...

Same vulnerability type (CWE-287)