What is CVE-2025-49182?

CVE-2025-49182 is a high-severity vulnerability in Sick Ag Media Server, classified under CWE-540. CVSS score: 7.5/10. Published 2025-06-12.

How severe is CVE-2025-49182?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Sick Ag Media Server

CVE-2025-49182

Files in the source code contain login credentials for the admin user and the property configuration password, allowing an attacker to get full access to the application.

EPSS: 0.005 (64.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Sick Ag Media Server — versions 0

Weakness classification (CWE)

CWE-540

References

sick.com/psirt (x_SICK PSIRT Website)
cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_I… (x_SICK Operating Guidelines)
www.cisa.gov/resources-tools/resources/ics-recommended-practices (x_ICS-CERT recommended practices on Industrial Security)
www.first.org/cvss/calculator/3.1 (x_CVSS v3.1 Calculator)
www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.pdf (vendor-advisory)
www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.json (vendor-advisory, x_csaf)

Frequently asked questions

What is CVE-2025-49182?: CVE-2025-49182 is a high-severity vulnerability in Sick Ag Media Server, classified under CWE-540. CVSS score: 7.5/10. Published 2025-06-12.
How severe is CVE-2025-49182?: High severity. CVSS v3 base score is 7.5 out of 10.