Approved changes feed: RSS · Atom
cpe:2.3:a:b&r_industrial_automation_gmbh:aprol:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | B&R Industrial Automation Gmbh (cb18dcfa-747d-5b1b-a436-a5246bce6ee1) |
|---|---|
| Product | Aprol (575dc100-406c-562d-b0ed-12eb3555e3f9) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-8314 |
vulnerable | 2026-06-08 07:00:24.218852 |
Improper session handling in B&R APROL
An Incorrect Implementation of Authentication Algorithm and Exposure of Data Element to Wrong Ses-sion vulnerability in the session handling used in B&R APROL <4.4-00P5 may allow an authenticated network attacker to take over a currently active user session without login credentials.
Published: 2025-03-25T04:30:17.669Z
Updated: 2025-03-25T13:34:31.280Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-8313 |
vulnerable | 2026-06-08 07:00:24.218408 |
Default or Guessable SNMP community names in B&R APROL
An Exposure of Sensitive System Information to an Unauthorized Control Sphere and Initialization of a Resource with an Insecure Default vulnerability in the SNMP component of B&R APROL <4.4-00P5 may allow an unauthenticated adjacent-based attacker to read and alter configuration using SNMP.
Published: 2025-03-25T04:29:15.452Z
Updated: 2025-03-25T13:37:29.425Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45484 |
vulnerable | 2026-06-08 06:48:06.355035 |
Enabled ICMP redirection in B&R APROL
An Allocation of Resources Without Limits or Throttling vulnerability in the operating system network configuration used in B&R APROL <4.4-00P5 may allow an unauthenticated adjacent attacker to per-form Denial-of-Service (DoS) attacks against the product.
Published: 2025-03-25T04:55:02.781Z
Updated: 2025-03-31T18:07:09.768Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45483 |
vulnerable | 2026-06-08 06:48:06.354558 |
Missing GRUB password in B&R APROL
A Missing Authentication for Critical Function vulnerability in the GRUB configuration used B&R APROL <4.4-01 may allow an unauthenticated physical attacker to alter the boot configuration of the operating system.
Published: 2025-03-25T04:54:24.913Z
Updated: 2025-03-25T13:16:57.912Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-10210 |
vulnerable | 2026-06-08 06:22:03.791833 |
Path traversal in APROL Web Portal
An External Control of File Name or Path vulnerability in the APROL Web Portal used in B&R APROL <4.4-005P may allow an authenticated network-based attacker to access data from the file system.
Published: 2025-03-25T05:32:38.666Z
Updated: 2025-03-31T18:00:27.265Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-10209 |
vulnerable | 2026-06-08 06:22:03.791582 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-10208 |
vulnerable | 2026-06-08 06:22:03.791300 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-10207 |
vulnerable | 2026-06-08 06:22:03.790984 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-10206 |
vulnerable | 2026-06-08 06:22:03.790575 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.