Unrated severityNVD Advisory· Published Feb 2, 2024· Updated May 9, 2025
Automation Studio and PVI Multiple incorrect permission assignments for services
CVE-2020-24681
Description
Incorrect Permission Assignment for Critical Resource vulnerability in B&R Industrial Automation Automation Studio allows Privilege Escalation.This issue affects Automation Studio: from 4.6.0 through 4.6.X, from 4.7.0 before 4.7.7 SP, from 4.8.0 before 4.8.6 SP, from 4.9.0 before 4.9.4 SP.
Affected products
2>=4.6.0 <=4.6.X, >=4.7.0 <4.7.7 SP, >=4.8.0 <4.8.6 SP, >=4.9.0 <4.9.4 SP+ 1 more
- (no CPE)range: >=4.6.0 <=4.6.X, >=4.7.0 <4.7.7 SP, >=4.8.0 <4.8.6 SP, >=4.9.0 <4.9.4 SP
- (no CPE)range: 4.6.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.