CVE-2025-11043
Improper Server Certificate Validation in Automation Studio
An Improper Certificate Validation vulnerability in the OPC-UA client and ANSL over TLS client used in Automation Studio versions before 6.5 could allow an unauthenticated attacker on the network to position themselves to intercept and interfere with data exchanges.
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Affected products
B&R Industrial Automation GmbH · B&R Automation StudioWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →