6 matches found
CVE-2024-45480
An improper control of generation of code 'Code Injection' vulnerability in the AprolCreateReport component of B APROL 4.4-00P5 may allow an unauthenticated network-based attacker to read files from the local system...
CVE-2024-45480
creationtimestamp| type| source ---|---|--- 2025-03-25 06:57:08+00:00| seen| https://t.me/cvedetector/21046 2025-04-03 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-093-05...
CVE-2024-45480
An improper control of generation of code 'Code Injection' vulnerability in the AprolCreateReport component of B&R APROL 4.4-00P5 may allow an unauthenticated network-based attacker to read files from the local system...
CVE-2024-45480
CVE-2024-45480 concerns B&R APROL’s AprolCreateReport component (versions before 4.4-00P5). The flaw is described as improper control of code generation, enabling an unauthenticated, network-based attacker to read local system files (code injection-related exposure) with high impact on confidenti...
CVE-2024-45480 Unauthorized local file reading in B&R APROL
An improper control of generation of code 'Code Injection' vulnerability in the AprolCreateReport component of B&R APROL 4.4-00P5 may allow an unauthenticated network-based attacker to read files from the local system...
CVE-2024-45480 Unauthorized local file reading in B&R APROL
An improper control of generation of code 'Code Injection' vulnerability in the AprolCreateReport component of B&R APROL 4.4-00P5 may allow an unauthenticated network-based attacker to read files from the local system...