Arbitrary Execution Vulnerability in SICK SOPAS ET (before version 4.8.0)

Arbitrary Execution Vulnerability in SICK SOPAS ET (before version 4.8.0)

CVE-2021-32497 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

SICK SOPAS ET before version 4.8.0 allows attackers to wrap any executable file into an SDD and provide this to a SOPAS ET user. When a user starts the emulator the executable is run without further checks.

Learn more about our User Device Pen Test.