CVE-2019-19108

Summary

An authentication weakness in the SNMP service in B&R Automation Runtime versions 2.96, 3.00, 3.01, 3.06 to 3.10, 4.00 to 4.63, 4.72 and above allows unauthenticated users to modify the configuration of B&R products via SNMP.

Affected Software

VendorProductVersion RangeStatus
B&RAutomation Runtime2 <= 2.96affected
B&RAutomation Runtime3 <= 3.10affected
B&RAutomation Runtime4 <= 4.72affected

Weaknesses

  • CWE-798: CWE-798 Use of Hard-coded Credentials

ADP Enrichment

CVE Program Container

Additional References

References