Authentication bypass flaw in several mapp components

An “Authentication Bypass Using an Alternate Path or Channel” vulnerability in the OPC UA Server configuration required for B&R mapp Cockpit before 6.0, B&R mapp View before 6.0, B&R mapp Services before 6.0, B&R mapp Motion before 6.0 and B&R mapp Vision before 6.0 may be used by an unauthenticated network-based attacker to cause information disclosure, unintended change of data, or denial of service conditions. B&R mapp Services is only affected, when mpUserX or mpCodeBox are used in the Automation Studio project.

N/A

使用候选路径或通道进行的认证绕过

B&R Industrial Automation mapp 安全漏洞

B&R Industrial Automation mapp是奥地利贝加莱工业自动化（B&R Industrial Automation）公司的一套革命性的软件工程平台，它通过集成控制工艺的专业知识到模块化软件中，简化了新应用程序的开发，从而缩短了新机器的开发周期，并显著减少了开发工作量。 B&R Industrial Automation mapp存在安全漏洞，该漏洞源于存在使用备用路径或通道绕过身份验证漏洞，未经身份验证的网络攻击者可能会利用该漏洞导致信息泄露、数据意外更改或拒绝服务。

N/A

N/A