These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2024-8315 is a medium-severity credential exposure issue in B&R APROL versions before 4.4-00P5. According to the CISA CSAF advisory published on 2025-03-24, a flaw in scripts used by the product could allow an authenticated local attacker to read credential information. B&R recommends applying the patch or upgrading to a non-vulnerable version, and changing secrets/passwords after updating.
CVE-2024-45482 is a high-severity issue in the SSH server on B&R APROL < 4.4-00P1. According to CISA’s CSAF advisory, an authenticated local attacker from a trusted remote server may be able to execute malicious commands. The issue was publicly disclosed on 2025-03-24 and is not listed as a KEV item in the provided data.
CVE-2024-45481 is a high-severity issue in B&R APROL versions before 4.4-00P5. CISA’s advisory says scripts using the SSH server do not fully filter special elements, which may allow an authenticated local attacker to authenticate as another legitimate user. B&R recommends patching or upgrading to a non-vulnerable version and changing secrets/passwords after applying the update.
CVE-2024-45480 is a high-severity code injection issue in the AprolCreateReport component of B&R APROL < 4.4-00P5. According to the CISA CSAF advisory published on 2025-03-24, an unauthenticated network-based attacker may be able to read files from the local system. B&R recommends applying the patch or upgrading to a non-vulnerable version as soon as possible.