CVE-2023-3242
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2023-3242 refers to a vulnerability in B&R Industrial Automation's Automation Runtime version G4.93, which involves improper initialization in the Portmapper component. This issue permits unauthenticated attackers to inflict permanent denial-of-service conditions over the network. The vulnerability can lead to significant disruptions in industrial automation systems, making it a critical concern for organizations relying on this software. Attackers can exploit this weakness without needing valid credentials, increasing the risk of potential attacks. Organizations using the affected version of Automation Runtime are advised to update to a secure release as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Apple (iPhone OS)
- tvOS
- iPadOS
- MacOS
- Apple TV
Affected Vendors
- Apple