VYPR
Unrated severityNVD Advisory· Published Feb 2, 2024· Updated May 9, 2025

Automation Studio and PVI Multiple incorrect permission assignments for services

CVE-2020-24681

Description

Incorrect Permission Assignment for Critical Resource vulnerability in B&R Industrial Automation Automation Studio allows Privilege Escalation.This issue affects Automation Studio: from 4.6.0 through 4.6.X, from 4.7.0 before 4.7.7 SP, from 4.8.0 before 4.8.6 SP, from 4.9.0 before 4.9.4 SP.

Affected products

2
  • >=4.6.0 <=4.6.X, >=4.7.0 <4.7.7 SP, >=4.8.0 <4.8.6 SP, >=4.9.0 <4.9.4 SP+ 1 more
    • (no CPE)range: >=4.6.0 <=4.6.X, >=4.7.0 <4.7.7 SP, >=4.8.0 <4.8.6 SP, >=4.9.0 <4.9.4 SP
    • (no CPE)range: 4.6.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.