CVE Vulnerabilities

CVE-2024-45481

Incomplete Filtering of Special Elements

Published: Mar 25, 2025 | Modified: Mar 25, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

An Incomplete Filtering of Special Elements vulnerability in scripts using the SSH server on B&R APROL <4.4-00P5 may allow an authenticated local attacker to authenticate as another legitimate user.

Weakness

The product receives data from an upstream component, but does not completely filter special elements before sending it to a downstream component.

References