Metrics
Affected Vendors & Products
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2020-17396 | Unquoted Search Path or Element vulnerability in B&R Industrial Automation Automation Studio, B&R Industrial Automation NET/PVI allows Target Programs with Elevated Privileges.This issue affects Automation Studio: from 4.0 through 4.6, from 4.7.0 before 4.7.7 SP, from 4.8.0 before 4.8.6 SP, from 4.9.0 before 4.9.4 SP; NET/PVI: from 4.0 through 4.6, from 4.7.0 before 4.7.7, from 4.8.0 before 4.8.6, from 4.9.0 before 4.9.4. |
Solution
No solution given by the vendor.
Workaround
B&R has identified the following specific workarounds and mitigations. Users of B&R Automation Studio and PVI may manually reconfigure the service paths and enclose them in quotes. Additionally, it is recommended to limit access to the workstation running B&R Automation Studio and PVI to authorized users
Tue, 17 Jun 2025 22:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Status: PUBLISHED
Assigner: ABB
Published:
Updated: 2025-06-17T21:29:22.845Z
Reserved: 2020-08-26T00:00:00.000Z
Link: CVE-2020-24682
Updated: 2024-08-04T15:19:09.304Z
Status : Modified
Published: 2024-02-02T08:15:45.573
Modified: 2024-11-21T05:15:45.333
Link: CVE-2020-24682
No data.
OpenCVE Enrichment
No data.
EUVD