CVE-2024-45480

Q: How severe is CVE-2024-45480?

CVSS scoring is not yet available for CVE-2024-45480. Check NVD for updates.

Q: Is there a patch for CVE-2024-45480?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.

Vulnerability Description

An improper control of generation of code ('Code Injection') vulnerability in the AprolCreateReport component of B&R APROL <4.4-00P5 may allow an unauthenticated network-based attacker to read files from the local system.

Related Weaknesses (CWE)

CWE-94

References

https://www.br-automation.com/fileadmin/SA24P015-77573c08.pdf

FAQ

What is CVE-2024-45480?

CVE-2024-45480 is a documented vulnerability. An improper control of generation of code ('Code Injection') vulnerability in the AprolCreateReport component of B&R APROL <4.4-00P5 may allow an unauthenticated network-based attacker to read files f...

How severe is CVE-2024-45480?

CVSS scoring is not yet available for CVE-2024-45480. Check NVD for updates.

Is there a patch for CVE-2024-45480?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.