B&R Industrial Automation Automation Runtime A4.73

CPE Details

B&R Industrial Automation Automation Runtime A4.73
br-automation
automation_runtime
a4.73
2020-10-30
12h44 +00:00
2020-10-30
12h44 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:br-automation:automation_runtime:a4.73:*:*:*:*:*:*:*

Informations

Vendor

br-automation

Product

automation_runtime

Version

a4.73

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-6028 2024-02-05 17h33 +00:00 A reflected cross-site scripting (XSS) vulnerability exists in the SVG version of System Diagnostics Manager of B&R Automation Runtime versions <= G4.93 that enables a remote attacker to execute arbitrary JavaScript code in the context of the attacked user’s browser session.
6.1
Moyen
CVE-2024-0323 2024-02-05 16h05 +00:00 The FTP server used on the B&R Automation Runtime supports unsecure encryption mechanisms, such as SSLv3, TLSv1.0 and TLS1.1. An network-based attacker can exploit the flaws to conduct man-in-the-middle attacks or to decrypt communications between the affected product clients.
9.8
Critique
CVE-2023-3242 2023-07-26 17h36 +00:00 Improper initialization implementation in Portmapper used in B&R Industrial Automation Automation Runtime
8.6
Haute
CVE-2022-4286 2023-02-14 14h25 +00:00 A reflected cross-site scripting (XSS) vulnerability exists in System Diagnostics Manager of B&R Automation Runtime versions >=3.00 and <=C4.93 that enables a remote attacker to execute arbitrary JavaScript in the context of the users browser session.
6.1
Moyen
CVE-2020-11637 2020-10-15 15h08 +00:00 A memory leak in the TFTP service in B&R Automation Runtime versions
7.5
Haute