Vulnerabilities > BR Automation > High

DATE CVE VULNERABILITY TITLE RISK
2020-11-27 CVE-2019-19876 SQL Injection vulnerability in Br-Automation Industrial Automation Aprol
An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08.
network
low complexity
br-automation CWE-89
7.5
2020-11-27 CVE-2019-19874 Injection vulnerability in Br-Automation Industrial Automation Aprol
An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08.
network
low complexity
br-automation CWE-74
7.5
2020-11-27 CVE-2019-19872 Injection vulnerability in Br-Automation Industrial Automation Aprol
An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08.
network
low complexity
br-automation CWE-74
7.5
2020-04-20 CVE-2019-19108 Use of Hard-coded Credentials vulnerability in Br-Automation Automation Runtime and Automation Studio
An authentication weakness in the SNMP service in B&R Automation Runtime versions 2.96, 3.00, 3.01, 3.06 to 3.10, 4.00 to 4.63, 4.72 and above allows unauthenticated users to modify the configuration of B&R products via SNMP.
network
low complexity
br-automation CWE-798
7.5