{"vulnerability": "CVE-2025-49183", "sightings": [{"uuid": "b4840efb-8aad-4092-9c10-ba7143bdea05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49183", "type": "seen", "source": "Telegram/3J8gN047RrG3nDpdzy3WcJEBXnEU7VJIUHtMysLlMM66bfE", "content": "", "creation_timestamp": "2025-06-12T14:33:17.000000Z"}, {"uuid": "79367173-976b-4dac-a681-474b3c076d4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49183", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18285", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-49183\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: All communication with the REST API is unencrypted (HTTP), allowing an attacker to intercept traffic between an actor and the webserver. This leads to the possibility of information gathering and downloading media files.\n\ud83d\udccf Published: 2025-06-12T13:21:57.463Z\n\ud83d\udccf Modified: 2025-06-13T08:18:11.333Z\n\ud83d\udd17 References:\n1. https://sick.com/psirt\n2. https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF\n3. https://www.cisa.gov/resources-tools/resources/ics-recommended-practices\n4. https://www.first.org/cvss/calculator/3.1\n5. https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.pdf\n6. https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.json", "creation_timestamp": "2025-06-13T08:34:29.000000Z"}]}