Security Advisory – CVE-2024-2637: Elevated Risk in B&R Software Products

B&R has issued a security advisory for an insecure code loading vulnerability identified in multiple software products, tracked as CVE-2024-2637. This vulnerability, rated high with a CVSS score of 7.2, could allow an authenticated local attacker to execute arbitrary code via manipulated DLL files placed in a search path. Affected products include Scene Viewer, Automation Runtime, mapp Vision, and others, with specific versions listed as vulnerable. B&R recommends updating to the patched versions immediately to mitigate this security risk. Further details and mitigation strategies are discussed in the advisory.

Source URL