CRITICAL🇵🇱 Wersja polska

CVE-2024-0323

CVSS 9.8v3.1pub. 2024-02-05upd. 2024-11-21

The FTP server used on the B&R Automation Runtime supports unsecure encryption mechanisms, such as SSLv3, TLSv1.0 and TLS1.1. An network-based attacker can exploit the flaws to conduct man-in-the-middle attacks or to decrypt communications between the affected product clients.

🤖 AI Analysis
How it works

The FTP server running within B&R Automation Runtime accepts connections using protocols considered obsolete and vulnerable: SSLv3, TLSv1.0, and TLSv1.1. These protocols contain known cryptographic weaknesses that allow an attacker on the same network to force negotiation of weaker encryption (downgrade attack) or directly decrypt transmitted data. No authorization or user interaction is required — network access to the device is sufficient.

Impact

An attacker can conduct a man-in-the-middle attack, intercept sensitive data transmitted between the client and FTP server (including authentication and configuration data), and compromise the integrity and confidentiality of communication with the industrial device.

Mitigation & patch

Apply patches available from the manufacturer according to references (Security Advisory SA23P004 available on the B&R Automation website). It is also recommended to configure the network environment so that access to the FTP server is restricted only to trusted hosts, and to consider disabling FTP in favor of more secure file transfer protocols.

Who is affected

B&R Automation Runtime — versions indicated in the manufacturer's references (Security Advisory SA23P004)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Br Automation Automation Runtime

    APP
    Br-Automation
    ≤ i4.93
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2019-19108CRITICAL9.4ten sam produkt

An authentication weakness in the SNMP service in B&R Automation Runtime versions 2.96, 3.00, 3.01, 3.06 to 3....

CVE-2024-5800HIGH8.3ten sam produkt

Diffie-Hellman groups with insufficient strength are used in the SSL/TLS stack of B&R Automation Runtime versi...

CVE-2023-3242HIGH8.6ten sam produkt

Improper initialization implementation in Portmapper used in B&R Industrial Automation Automation Runtime <G4....

CVE-2021-22275HIGH8.6ten sam produkt

Buffer Overflow vulnerability in B&R Automation Runtime webserver allows an unauthenticated network-based atta...

CVE-2023-6028MEDIUM6.1ten sam produkt

A reflected cross-site scripting (XSS) vulnerability exists in the SVG version of System Diagnostics Manager o...