First published: Mon Feb 05 2024(Updated: )
A reflected cross-site scripting (XSS) vulnerability exists in the SVG version of System Diagnostics Manager of B&R Automation Runtime versions <= G4.93 that enables a remote attacker to execute arbitrary JavaScript code in the context of the attacked user’s browser session.
Credit: cybersecurity@ch.abb.com
Affected Software | Affected Version | How to fix |
---|---|---|
Br-automation Automation Runtime | <i4.93 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.