CVE-2024-5801

Summary

Enabled IP Forwarding feature in B&R Automation Runtime versions before 6.0.2 may allow remote attack-ers to compromise network security by routing IP-based packets through the host, potentially by-passing firewall, router, or NAC filtering.

Affected Software

VendorProductVersion RangeStatus
B&R Industrial AutomationAutomation Runtime0 < 6.0affected

Weaknesses

  • CWE-1188: CWE-1188 Insecure Default Initialization of Resource
  • CWE-653: CWE-653 Improper Isolation or Compartmentalization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References