PT-2020-10279 · B&R Industrial Automation · Aprol

Published

2020-11-27

Updated

2020-12-09

CVE-2019-19876

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions B&R Industrial Automation APROL versions prior to R4.2 V7.08

Description An issue was discovered in the EnMon PHP script, which is vulnerable to SQL injection.

Recommendations For versions prior to R4.2 V7.08, update to version R4.2 V7.08 or later to resolve the issue.

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2019-19876

Aprol