CVE-2025-49196CRITICAL 9.1EPSS p12.1%

CVE-2025-49196CVE-2025-49196

Description

A service supports the use of a deprecated and unsafe TLS version. This could be exploited to expose sensitive information, modify data in unexpected ways or spoof identities of other users or devices, affecting the confidentiality and integrity of the device.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS0.22% probability of exploitation · percentile 12.1% · 2026-06-19T12:03:05Z
Published2025-06-12
Last modified2026-01-26

Underlying weaknesses· 1

CWE-327

References

  1. https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF
  2. https://sick.com/psirt
  3. https://www.cisa.gov/resources-tools/resources/ics-recommended-practices
  4. https://www.first.org/cvss/calculator/3.1
  5. https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.json
  6. https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.pdf

1

TypeTargetConfidenceTier
WeaknessUse of a Broken or Risky Cryptographic Algorithmcwe-3270%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-9293
CVE
CVE-2025-3090
CVE
CVE-2025-41646
CVE
CVE-2025-40805
CVE
CVE-2025-59461
CVE
CVE-2025-41652
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.