CVE-2020-11641

SiteManager Local File Inclusion Vulnerability

CVSS 7.7 HIGHEPSS 1.2%CWE-552

A local file inclusion vulnerability in B&R SiteManager versions <9.2.620236042 allows authenticated users to read sensitive files from SiteManager instances.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Produtos afetados

B&R · SiteManager

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://us-cert.cisa.gov/ics/advisories/icsa-20-273-03 https://www.br-automation.com/downloads_br_productcatalogue/assets/1600003183751-de-original-1.0.pdf