Vulnerabilities > BR Automation > Industrial Automation Aprol > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-08-29 CVE-2024-5624 Cross-site Scripting vulnerability in Br-Automation Industrial Automation Aprol
Reflected Cross-Site Scripting (XSS) in Shift Logbook application of B&R APROL <= R 4.4-00P3 may allow a network-based attacker to execute arbitrary JavaScript code in the context of the user's browser session
network
low complexity
br-automation CWE-79
6.1
6.1
2020-11-27 CVE-2019-19878 Improper Authentication vulnerability in Br-Automation Industrial Automation Aprol
An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08.
network
low complexity
br-automation CWE-287
5.0
5.0
2020-11-27 CVE-2019-19877 Path Traversal vulnerability in Br-Automation Industrial Automation Aprol
An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08.
network
low complexity
br-automation CWE-22
5.0
5.0
2020-11-27 CVE-2019-19873 Improper Authentication vulnerability in Br-Automation Industrial Automation Aprol
An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08.
network
low complexity
br-automation CWE-287
5.0
5.0
2020-11-27 CVE-2019-19869 Unspecified vulnerability in Br-Automation Industrial Automation Aprol
An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08.
network
low complexity
br-automation
5.0
5.0