Arbitrary File Upload and Download Vulnerability in SICK APU FTP Server

Arbitrary File Upload and Download Vulnerability in SICK APU FTP Server

CVE-2023-43696 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Improper Access Control in SICK APU allows an unprivileged remote attacker to download as well as upload arbitrary files via anonymous access to the FTP server.

Learn more about our Cis Benchmark Audit For Server Software.