What the vulnerability does
01Description
Missing authentication when creating and managing the B&R APROL database in versions < R 4.2-07 allows reading and changing the system configuration.
CVE-2022-43761
CRITICAL
CVE-2022-43761: Lack of authentication when managing APROL database
CVSS base score
9.4/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
Key dates
02Disclosure timeline
February 8, 2023
CVE published
March 25, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2023-27259 Missing Authentication In IDAttend’s IDWeb Application
CVE-2026-1332 HAMASTAR Technology|MeetingHub - Missing Authentication
CVE-2026-0611 Spacelabs Healthcare Sentinel 10.5.x < 11.6.0 Unauthenticated RCE via .NET Remoting
CVE-2018-25437 WordPress CherryFramework Themes 3.1.4 Backup File Download
CVE-2017-6872
