ABB reported today then, ABB B&R Automation is part of Vulnerability.

The affected B&R Automation Runtime versions use an underlying operating system that in turn has a TFTP service implementation. This TFTP service implementation hasbeenfoundto have a memory management issue, not releasing previously allocated memory. An attacker with the ability to send TFTP requests to the system could exhaust the available system memory by sending specially crafted network packets to the affected service.

Affected B&R Automation Runtime versions maybe abused to continuously consume available memory.This vulnerability may lead to denial of service (DoS)conditions, where interaction is hampered and reliability of services are impacted.

Affected ABB Product

ABB has released the bug fixed patch for this issue.

ABB recommend to upgrade the version because you are threated from attackers if you are using this product.

error: Content is protected !!