CVE-2022-4286
Reflected Cross-Site Scripting Vulnerabilities in Automation Runtime
A reflected cross-site scripting (XSS) vulnerability exists in System Diagnostics Manager of B&R Automation Runtime versions >=3.00 and <=C4.93 that enables a remote attacker to execute arbitrary JavaScript in the context of the users browser session.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Produtos afetados
B&R Industrial Automation · B&R Automation RuntimeQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →