CVE-2025-59460
Unknown
Unknown - Not Provided
BaseFortify
Vulnerability report for CVE-2025-59460, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2025-10-27
Last updated on: 2025-11-03
Assigner: SICK AG
Description
Description
The system is deployed in its default state, with configuration settings that do not comply with the latest best practices for restricting access. This increases the risk of unauthorised connections.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| sick | tloc100-100_firmware | to 7.1.1 (exc) |
| sick | tloc100-100 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-1391 | The product uses weak credentials (such as a default key or hard-coded password) that can be calculated, derived, reused, or guessed by an attacker. |