CNNVD-202601-3051 Information
CNNVD ID
CNNVD-202601-3051
Related CVE
- CNNVD Published: 2026-01-19
Description (Chinese)
B&R Automation Studio是奥地利B&R公司的一个集成开发环境。 B&R Automation Studio 6.5之前版本存在信任管理问题漏洞,该漏洞源于OPC-UA客户端和ANSL over TLS客户端证书验证不当,可能导致网络上的未经验证攻击者拦截和干扰数据交换。
Description (English)
B&R Automation Studio is an integrated development environment of the Austrian company B&R. Prior to the B&R Automation System 6.5, there was a trust management gap, which stemmed from inadequate validation of the OPC-UA client and ANSL over TLS client certificates, which could lead to the interception and interference of data exchange by uncertified assailants on the network.
Hazard Level
Medium
Vulnerability Type
信任管理问题
Affected Vendor
B&R
Published
2026-01-19
Last Modified
2026-02-24
References
https://www.br-automation.com/fileadmin/SA25P004-4f45197f.pdf https://access.redhat.com/security/cve/cve-2025-11043
Patch
https://www.br-automation.com/fileadmin/SA25P004-4f45197f.pdf
Share on: