All 9 CVE vulnerabilities found in APROL, with AI-generated Chinese analysis, references, and POCs.
Vendor: B&R Industrial Automation GmbH
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-10210 | Path traversal in APROL Web Portal CWE-73 | 6.5AI | MediumAI | 2025-03-25 |
| CVE-2024-45484 | Enabled ICMP redirection in B&R APROL CWE-770 | 6.5AI | MediumAI | 2025-03-25 |
| CVE-2024-45483 | Missing GRUB password in B&R APROL CWE-306 | 6.1AI | MediumAI | 2025-03-25 |
| CVE-2024-10209 | Incorrect Permission Assignment in APROL file system CWE-732 | 7.1AI | HighAI | 2025-03-25 |
| CVE-2024-10208 | Cross Site Scripting vulnerability in APROL Web Portal CWE-79 | 5.4AI | MediumAI | 2025-03-25 |
| CVE-2024-10207 | Server-Side Request Forgery (authenticated) in APROL Web Portal CWE-918 | 7.1AI | HighAI | 2025-03-25 |
| CVE-2024-10206 | Server-Side Request Forgery (unauthenticated) in APROL Web Portal CWE-918 | 8.2AI | HighAI | 2025-03-25 |
| CVE-2024-8314 | Improper session handling in B&R APROL CWE-303 | 8.8AI | HighAI | 2025-03-25 |
| CVE-2024-8313 | Default or Guessable SNMP community names in B&R APROL CWE-497 | 8.8AI | HighAI | 2025-03-25 |
All 9 known CVE vulnerabilities affecting APROL with full Chinese analysis, references, and POCs where available.