CVE-2024-45482

Name of the Vulnerable Software and Affected Versions B&R APROL versions prior to 4.4-00P1

Description The issue is related to an Inclusion of Functionality from Untrusted Control Sphere vulnerability in the SSH server, which may allow an authenticated local attacker from a trusted remote server to execute malicious commands. This could potentially be exploited by a trusted remote attacker to execute commands.

Recommendations For versions prior to 4.4-00P1, update to version 4.4-00P1 or later to secure against attacks. As a temporary workaround, consider restricting access to the SSH server until the update is applied.