CVE-2020-11641

HIGH

B&R SiteManager <9.2.620236042 - Info Disclosure

Title source: llm
STIX 2.1

Description

A local file inclusion vulnerability in B&R SiteManager versions <9.2.620236042 allows authenticated users to read sensitive files from SiteManager instances.

References (2)

Core 2
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://us-cert.cisa.gov/ics/advisories/icsa-20-273-03

Scores

CVSS v3 7.7
EPSS 0.0121
EPSS Percentile 64.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Details

CWE
CWE-552
Status published
Products (1)
br-automation/sitemanager < 9.2.620236042
Published Oct 15, 2020
Tracked Since Feb 18, 2026