Description
When an error occurs in the application a full stacktrace is provided to the user. The stacktrace lists class and method names as well as other internal information. An attacker thus receives information about the technology used and the structure of the application.
CVSS Metrics
- Vector
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
- Attack Vector
- network
- Complexity
- low
- Privileges
- high
- User Action
- none
- Scope
- unchanged
- Confidentiality
- low
- Integrity
- none
- Availability
- none
- Weaknesses
- CWE-200NVD-CWE-noinfo
Metadata
- Primary Vendor
- SICK
- Published
- 10/6/2025
- Last Modified
- 1/27/2026
- Source
- NIST NVD
- Note: Verify all details with official vendor sources before applying patches.
Affected Products
sick : baggage_analyticssick : logistic_diagnostic_analyticssick : package_analyticssick : tire_analytics
AI-Powered Remediation
Generate remediation guidance or a C-suite brief for this vulnerability.