Headline
CVE-2023-1617
Improper Authentication vulnerability in B&R Industrial Automation B&R VC4 (VNC-Server modules). This vulnerability may allow an unauthenticated network-based attacker to bypass the authentication mechanism of the VC4 visualization on affected devices. The impact of this vulnerability depends on the functionality provided in the visualization. This issue affects B&R VC4: from 3.* through 3.96.7, from 4.0* through 4.06.7, from 4.1* through 4.16.3, from 4.2* through 4.26.8, from 4.3* through 4.34.6, from 4.4* through 4.45.1, from 4.5* through 4.45.3, from 4.7* through 4.72.9.
%PDF-1.7 %���� 1 0 obj <>/Metadata 749 0 R/ViewerPreferences 750 0 R>> endobj 2 0 obj <> endobj 3 0 obj <>/ExtGState<>/XObject<>/ProcSet[/PDF/Text/ImageB/ImageC/ImageI] >>/MediaBox[ 0 0 595.32 842.04] /Contents 4 0 R/Group<>/Tabs/S/StructParents 0>> endobj 4 0 obj <> stream x��\Ko#�������~?a��6b �����AY��V�l�C�}���=�MQ�`k�Ù�G�㫪�.�ߞ?�~�鹻���>?�}���o�/�O_���������=|~�{���x���|v��|����a������g�’�?c4�H’��9�`=ݷ����=��]ݞ�]��θ˷�����IG;�{�Dg��������#%��`�������_. �f�P������wI�v�9?�B??;�1�{) Ɛ�Ą�� ��Q�N:.��A��qW�j/����ac��ca�)3=5M� �’Qd��������P�&���F���n���&m��"�PM�ZhO��k�w�8yMz� �B�,���q�;c��ŷ���[���BT��f5EmA?�.�@w��::vrT��˽c/���;�j����1֠���6��> ����2+�