Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Weak Session Token used in Automation Runtime SDM
Vulnerability Description
A Generation of Predictable Numbers or Identifiers vulnerability in the SDM component of B&R Automation Runtime versions before 6.4 may allow an unauthenticated network-based attacker to take over already established sessions.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
可预测问题
Vulnerability Title
B&R Automation Runtime 安全漏洞
Vulnerability Description
B&R Automation Runtime是B&R Automation公司的一个自动化运行时。 B&R Automation Runtime 6.4之前版本存在安全漏洞,该漏洞源于SDM组件生成可预测数字或标识符,可能导致未经身份验证的网络攻击者接管已建立的会话。
CVSS Information
N/A
Vulnerability Type
N/A