Vulnerabilidades en B&R Industrial Automation
29 resultadosCVE-2022-43764CRITICALBuffer overflow when changing configuration on Tbase ServerEPSS 0.8%CVE-2023-1617CRITICALImproper Authentication Mechanism in B&R VC4 VisualizationEPSS 0.7%CVE-2021-22289HIGHRCE through Project Upload from TargetEPSS 0.6%CVE-2022-43762HIGHMemory leak when receiving messages in APROL Tbase serverEPSS 0.6%CVE-2022-43765HIGHDoS in APROLs Tbase serverEPSS 0.6%CVE-2022-43763HIGHLack of checking preconditions in APROL EPSS 0.6%CVE-2022-4286MEDIUMReflected Cross-Site Scripting Vulnerabilities in Automation RuntimeEPSS 0.6%CVE-2022-43761CRITICALLack of authentication when managing APROL databaseEPSS 0.6%CVE-2023-3242HIGHImproper initialization implementation in Portmapper used in B&R Industrial Automation Automation Runtime <G4.93 allows unauthenticated netwEPSS 0.5%CVE-2021-22282HIGHRCE in B&R Automation Studio with crafted project filesEPSS 0.4%CVE-2021-22281MEDIUMZip Slip Vulnerability in B&R Automation Studio Project ImportEPSS 0.4%CVE-2024-45480CRITICALUnauthorized local file reading in B&R APROLEPSS 0.4%CVE-2023-6028MEDIUMSDM Web interface vulnerable to XSSEPSS 0.4%CVE-2024-0220HIGHB&R products use insufficient communication encryptionEPSS 0.4%CVE-2024-8603HIGHA “Use of a Broken or Risky Cryptographic Algorithm” vulnerability in the SSL/TLS component used in B&R Automation Runtime versions before 6EPSS 0.3%CVE-2025-3450CRITICALAutomation Runtime SDM requests may impact systemEPSS 0.3%CVE-2024-5800HIGHDiffie-Hellman groups with insufficient strength used in SSL/TLS stack of B&R Automation RuntimeEPSS 0.3%CVE-2024-5801MEDIUMIP Forwarding enabled in B&R Automation RuntimeEPSS 0.3%CVE-2024-5624MEDIUMReflected Cross-Site Scripting (XSS) in Shift Logbook application of B&R APROLEPSS 0.2%CVE-2024-0323CRITICALFTP uses unsecure encryption mechanismsEPSS 0.2%