B&R Industrial Automation
Cyber Security Advisory for B&R APROL Vulnerabilities
Pages
9
Time to read
13 mins
Publication
Language
English
Summary
This document is a Cyber Security Advisory detailing potential vulnerabilities in B&R APROL versions. It outlines a rigorous internal cyber security improvement process that includes regular testing and assessments to identify product issues. The advisory notifies customers about identified vulnerabilities, including privilege escalation and information disclosure risks associated with specific CVE IDs. It describes the process for validating product issues, identifying root causes, and notifying affected users. The advisory emphasizes the importance of responsible disclosure and provides information on affected products, recommended actions, and available updates. Specific vulnerabilities are categorized by severity, with CVSS scores provided for each. The advisory also includes guidance on applying patches and changing credentials post-update to mitigate risks. The document serves as a commitment to user safety and timely information dissemination regarding product vulnerabilities.
