How severe is CVE-2021-22280?

CVE-2021-22280 has a CVSS v3 score of 7.2 (HIGH).

CVE-2021-22280

Name: automation_studio
Author: br-automation

7.2HIGH

Improper DLL loading algorithms in B&R Automation Studio versions >=4.0 and <4.12 may allow an authenticated local attacker to execute code in the context of the product.

Publicado: 5/14/2024Actualizado: 12/19/2025

Descripción

Improper DLL loading algorithms in B&R Automation Studio versions >=4.0 and <4.12 may allow an authenticated local attacker to execute code in the context of the product.

Análisis IAImpulsado por IA

Productos Afectados

br-automationautomation_studio

Referencias

https://www.br-automation.com/fileadmin/2021-10_DLL_Hijacking_Vulnerability_in_Automation_Studio-7dd34511.pdf
Vendor Advisory
https://www.br-automation.com/fileadmin/2021-10_DLL_Hijacking_Vulnerability_in_Automation_Studio-7dd34511.pdf
Vendor Advisory