Unrated severityNVD Advisory· Published Feb 14, 2023· Updated Mar 20, 2025
Reflected Cross-Site Scripting Vulnerabilities in Automation Runtime
CVE-2022-4286
Description
A reflected cross-site scripting (XSS) vulnerability exists in System Diagnostics Manager of B&R Automation Runtime versions >=3.00 and <=C4.93 that enables a remote attacker to execute arbitrary JavaScript in the context of the users browser session.
Affected products
2>=3.00 <=C4.93+ 1 more
- (no CPE)range: >=3.00 <=C4.93
- (no CPE)range: >=3.00
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.