Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Automation Studio and PVI Multiple unquoted service path vulnerabilities
Vulnerability Description
Unquoted Search Path or Element vulnerability in B&R Industrial Automation Automation Studio, B&R Industrial Automation NET/PVI allows Target Programs with Elevated Privileges.This issue affects Automation Studio: from 4.0 through 4.6, from 4.7.0 before 4.7.7 SP, from 4.8.0 before 4.8.6 SP, from 4.9.0 before 4.9.4 SP; NET/PVI: from 4.0 through 4.6, from 4.7.0 before 4.7.7, from 4.8.0 before 4.8.6, from 4.9.0 before 4.9.4.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
未经引用的搜索路径或元素
Vulnerability Title
B&R Industrial Automation Studio 代码问题漏洞
Vulnerability Description
B&R Industrial Automation Studio是奥地利贝加莱工业自动化(B&R Industrial Automation)公司的一套集成开发环境(IDE),用于开发和编程其自动化解决方案。 B&R Industrial Automation Studio 4.0到4.6版本、4.7.0到4.7.7 SP版本、4.8.0到4.8.6 SP版本、4.9.0到4.9.4 SP版本存在代码问题漏洞,该漏洞源于程序包含未加引号的搜索路径或元素漏洞,NET/PVI允许目标程序提升权限。
CVSS Information
N/A
Vulnerability Type
N/A