ICSA-25-093-05 · Published 2025-03-24 · View on CISA ICS-CERT ↗

B&R APROL

CVSS 8.8 HIGH

CVEs (13)

CVE-2024-45482 CVE-2024-45481 CVE-2024-45480 CVE-2024-8315 CVE-2024-45484 CVE-2024-45483 CVE-2024-8313 CVE-2024-8314 CVE-2024-10206 CVE-2024-10207 CVE-2024-10208 CVE-2024-10210 CVE-2024-10209

Remediations

B&R recommends that customers apply the patch or upgrade to a non-vulnerable version at their earliest convenience. The process to install updates is described in the user manual. The step to identify the installed product version is described in the user manual. As some of the vulnerabilities affect the confidentiality of credentials, it is recommended to change all secrets/passwords after applying the update.

Affected Vendors

B&R

Affected Products (6)

B&R · B&R APROL <4.4-01

B&R · B&R APROL 4.4-01

B&R · B&R APROL >=4.4-00P1

B&R · B&R APROL <4.4-00P1

B&R · B&R APROL >=4.4-00P5

B&R · B&R APROL <4.4-00P5

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more