CVEDB API

Missing authentication when creating and managing the B&R APROL database in versions < R 4.2-07 allows reading and changing the system configuration.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.2%

CVSS Severity

CVSS v3 Score 9.4

References

Products affected by CVE-2022-43761

Br-Automation » Industrial Automation Aprol » Version: N/A

cpe:2.3:a:br-automation:industrial_automation_aprol:-
Br-Automation » Industrial Automation Aprol » Version: r4.2

cpe:2.3:a:br-automation:industrial_automation_aprol:r4.2
Br-Automation » Industrial Automation Aprol » Version: r4.2-01

cpe:2.3:a:br-automation:industrial_automation_aprol:r4.2-01
Br-Automation » Industrial Automation Aprol » Version: r4.2-03

cpe:2.3:a:br-automation:industrial_automation_aprol:r4.2-03
Br-Automation » Industrial Automation Aprol » Version: r4.2-05

cpe:2.3:a:br-automation:industrial_automation_aprol:r4.2-05