CVE-2022-43765

Summary

B&R APROL versions < R 4.2-07 doesn’t process correctly specially formatted data packages sent to port 55502/tcp, which may allow a network based attacker to cause an application Denial-of-Service.

Affected Software

VendorProductVersion RangeStatus
B&R Industrial AutomationB&R APROL< R 4.2-07affected

Weaknesses

  • CWE-252: CWE-252: Unchecked Return Value

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References