CVE-2022-43764

Name of the Vulnerable Software and Affected Versions B&R APROL versions prior to R 4.2-07

Description The issue is related to insufficient validation of input parameters when changing configuration on the Tbase server, which could result in a buffer overflow. This may lead to Denial-of-Service conditions or execution of arbitrary code. The vulnerability can be exploited remotely.

Recommendations For versions prior to R 4.2-07, update to version R 4.2-07 or later to resolve the issue. As a temporary workaround, consider restricting access to the Tbase server configuration to minimize the risk of exploitation.