CVE-2024-10208 Information

Description

An Improper Neutralization of Input During Web Page Generation vulnerability in the APROL Web Portal used in B&R APROL <4.4-00P5 may allow an authenticated network-based attacker to insert malicious code which is then executed in the context of the user’s browser session.

Reference

https://www.br-automation.com/fileadmin/SA24P015-77573c08.pdf