PT-2020-12748 · B&R · B&R Gatemanager 4260+2

Published

2020-10-01

Updated

2021-11-03

CVE-2020-11646

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions B&R GateManager 4260 versions prior to 9.0.20262 B&R GateManager 8250 versions prior to 9.2.620236042 B&R GateManager 9250 versions prior to 9.0.20262

Description A log information disclosure issue allows authenticated users to view log information that is reserved for other users.

Recommendations For B&R GateManager 4260 versions prior to 9.0.20262, update to version 9.0.20262 or later to resolve the issue. For B&R GateManager 8250 versions prior to 9.2.620236042, update to version 9.2.620236042 or later to resolve the issue. For B&R GateManager 9250 versions prior to 9.0.20262, update to version 9.0.20262 or later to resolve the issue.

Fix

Insertion into Log File

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-532

Related Identifiers

CVE-2020-11646

Affected Products

B&R Gatemanager 4260

B&R Gatemanager 8250

B&R Gatemanager 9250

PT-2020-12748 · B&R · B&R Gatemanager 4260+2

CVE-2020-11646

Weakness Enumeration

Related Identifiers

Affected Products

References · 5