Lucene search
K

209 matches found

CNNVD
CNNVD
added 2024/08/29 12:0 a.m.3 views

B&R Industrial Automation APROL 跨站脚本漏洞

B&R Industrial Automation APROL is a production process management system from B&R Industrial Automation, Austria. A cross-site scripting vulnerability exists in B&R Industrial Automation APROL R version 4.4-00P3 and prior versions, which stems from a cross-site scripting vulnerability contained ...

6.1CVSS6.5AI score0.00239EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/29 12:0 a.m.9 views

PT-2024-36765 · B&R · B&R Aprol

Name of the Vulnerable Software and Affected Versions: B&R APROL versions = R 4.4-00P3 Description: An untrusted search path vulnerability exists in the software, allowing an authenticated local attacker to execute arbitrary code under other users' privileges. Recommendations: For B&R APROL...

7.8CVSS7.5AI score0.00168EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/08/29 12:0 a.m.2 views

B&R Industrial Automation APROL 安全漏洞

B&R Industrial Automation APROL is a production process management system from B&R Industrial Automation, Austria. A security vulnerability exists in B&R Industrial Automation APROL R version 4.4-00P3 and prior versions that stems from the inclusion of an untrusted search path vulnerability...

7.8CVSS6.8AI score0.00168EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/29 12:0 a.m.3 views

B&R APROL 安全漏洞

B&R Industrial Automation B&R APROL is a process control system from B&R Industrial Automation, Austria. A security vulnerability exists in B&R APROL that stems from the presence of an untrusted search path vulnerability that allows an authenticated, local attacker to execute arbitrary code with...

7.8CVSS7.4AI score0.00168EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/29 12:0 a.m.3 views

PT-2024-36772 · B&R · B&R Aprol

Name of the Vulnerable Software and Affected Versions: B&R APROL versions = R 4.4-00P3 Description: A Reflected Cross-Site Scripting XSS issue in the Shift Logbook application may allow a network-based attacker to execute arbitrary JavaScript code in the context of the user's browser session...

6.1CVSS6.4AI score0.00239EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2023/03/22 12:0 a.m.8 views

The vulnerability of the Tbase database server in the software solution for monitoring the status of B&R APROL industrial systems allows a intruder to trigger a service failure.

The vulnerability of the Tbase database server of the B&R APROL industrial system monitoring software solution is related to incorrect checking of the returned value from methods or functions. Exploiting this vulnerability could allow an attacker to cause service interruptions remotely...

7.8CVSS7.2AI score0.00616EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/03/22 12:0 a.m.6 views

The vulnerability of the Tbase database server in the software solution for monitoring the status of B&R APROL industrial systems allows a intruder to trigger a service failure.

The vulnerability of the Tbase database server of the B&R APROL industrial system monitoring software solution is related to incorrect checking of the returned value from methods or functions. Exploiting this vulnerability could allow an attacker to cause service interruptions remotely...

7.8CVSS7.1AI score0.00616EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/03/22 12:0 a.m.7 views

The vulnerability of the database server of the software solution for monitoring the status of B&R APROL industrial systems allows a hacker to read and modify configuration data.

The vulnerability of the database server of the B&R APROL software solution for monitoring the status of industrial systems is related to the absence of an authentication procedure. Exploiting this vulnerability allows a malicious actor to read and modify configuration data remotely...

9.7CVSS7.1AI score0.00551EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/03/21 12:0 a.m.7 views

The vulnerability of the Tbase database server of the software solution for monitoring the status of B&R APROL industrial systems allows a intruder to execute arbitrary code.

The vulnerability of the Tbase database server of the B&R APROL industrial system monitoring software arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS8.4AI score0.00619EPSS
Exploits0References4
OSV
OSV
added 2023/02/08 11:15 a.m.5 views

CVE-2022-43764

Insufficient validation of input parameters when changing configuration on Tbase server in B&R APROL versions R 4.2-07 could result in buffer overflow. This may lead to Denial-of-Service conditions or execution of arbitrary code...

9.8CVSS5.9AI score0.00776EPSS
Exploits0References1
OSV
OSV
added 2023/02/08 11:15 a.m.7 views

CVE-2022-43763

Insufficient check of preconditions could lead to Denial of Service conditions when calling commands on the Tbase server of B&R APROL versions R 4.2-07...

7.5CVSS5.8AI score0.00616EPSS
Exploits0References1
OSV
OSV
added 2023/02/08 11:15 a.m.3 views

CVE-2022-43762

Lack of verification in B&R APROL Tbase server versions R 4.2-07 may lead to memory leaks when receiving messages...

9.8CVSS5.8AI score0.00619EPSS
Exploits0References1
NVD
NVD
added 2023/02/08 11:15 a.m.26 views

CVE-2022-43762

Lack of verification in B&R APROL Tbase server versions R 4.2-07 may lead to memory leaks when receiving messages...

9.8CVSS8AI score0.00619EPSS
Exploits0References1
OSV
OSV
added 2023/02/08 11:15 a.m.5 views

CVE-2022-43765

B&R APROL versions R 4.2-07 doesn’t process correctly specially formatted data packages sent to port 55502/tcp, which may allow a network based attacker to cause an application Denial-of-Service...

7.5CVSS5.8AI score0.00616EPSS
Exploits0References1
NVD
NVD
added 2023/02/08 11:15 a.m.30 views

CVE-2022-43763

Insufficient check of preconditions could lead to Denial of Service conditions when calling commands on the Tbase server of B&R APROL versions R 4.2-07...

7.5CVSS7.6AI score0.00616EPSS
Exploits0References1
NVD
NVD
added 2023/02/08 11:15 a.m.17 views

CVE-2022-43765

B&R APROL versions R 4.2-07 doesn’t process correctly specially formatted data packages sent to port 55502/tcp, which may allow a network based attacker to cause an application Denial-of-Service...

7.5CVSS7.3AI score0.00616EPSS
Exploits0References1
NVD
NVD
added 2023/02/08 11:15 a.m.23 views

CVE-2022-43764

Insufficient validation of input parameters when changing configuration on Tbase server in B&R APROL versions R 4.2-07 could result in buffer overflow. This may lead to Denial-of-Service conditions or execution of arbitrary code...

9.8CVSS9.6AI score0.00776EPSS
Exploits0References1
Prion
Prion
added 2023/02/08 11:15 a.m.22 views

Design/Logic Flaw

Insufficient check of preconditions could lead to Denial of Service conditions when calling commands on the Tbase server of B&R APROL versions R 4.2-07...

5CVSS7.5AI score0.00616EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/02/08 11:15 a.m.20 views

Buffer overflow

Insufficient validation of input parameters when changing configuration on Tbase server in B&R APROL versions R 4.2-07 could result in buffer overflow. This may lead to Denial-of-Service conditions or execution of arbitrary code...

7.5CVSS9.4AI score0.00776EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/02/08 11:15 a.m.25 views

Code injection

Lack of verification in B&R APROL Tbase server versions R 4.2-07 may lead to memory leaks when receiving messages...

7.5CVSS9.2AI score0.00619EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder