Security Advisory – B&R Automation Studio and Technology Guarding Vulnerability (CVE-2024-0220)

A vulnerability identified as CVE-2024-0220 affects B&R Automation Studio versions before 4.6 and B&R Technology Guarding before version 1.4.0, involving insufficient encryption in communication channels. Attackers could exploit this flaw to intercept sensitive data or execute arbitrary code. B&R has addressed this issue by recommending updates to secure versions and advising on mitigating actions such as configuring firewalls to disable support for outdated TLS versions. The company emphasizes the importance of verifying digitally signed upgrade files to ensure system security.

For detailed information, please refer to the official advisory.