6 matches found
CVE-2025-3448
Reflected cross-site scripting XSS vulnerabilities exist in System Diagnostics Manager SDM of B&R Automation Runtime versions before 6.4 that enables a remote attacker to execute arbitrary JavaScript code in the context of the attacked user’s browser session...
EUVD-2025-32883
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in B&R Industrial Automation Automation Runtime.This issue affects Automation Runtime: from 6.0 before 6.4...
PT-2025-41144
Name of the Vulnerable Software and Affected Versions B Industrial Automation Automation Runtime versions prior to 6.4 Description An issue exists in B Industrial Automation Automation Runtime that allows for improper neutralization of input during web page generation, potentially leading to...
B&R Industrial Automation B&R APROL 安全漏洞
B&R Industrial Automation B&R APROL is a process control system from B&R Industrial Automation, Austria. A security vulnerability exists in B&R Industrial Automation B&R APROL versions prior to 4.4-00P5, which stems from insufficient script processing privileges and could allow an authenticated...
B&R Automation Runtime 安全漏洞
B&R Automation Runtime is a major component of AS from B&R Automation, an Austrian company. A security vulnerability exists in B&R Automation Runtime versions prior to 4.91 that stems from improper buffer limits in the web server. Exploitation of the vulnerability by an unauthenticated attacker...
B&r Automation APROL Authorization Issues Vulnerability
B&r Automation APROL is a Linux-based process control system for industrial control applications from B&r Automation Australia. An authorization issue vulnerability exists in versions prior to B&R Industrial Automation APROL R4.2 V7.08, which can be exploited by an attacker to bypass authenticati...