{"vulnerability": "CVE-2023-1617", "sightings": [{"uuid": "0f13e543-5476-4afe-8431-210865073a01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-1617", "type": "seen", "source": "https://t.me/cibsecurity/62135", "content": "\u203c CVE-2023-1617 \u203c\n\nImproper Authentication vulnerability in B&R Industrial Automation B&R VC4 (VNC-Server modules).\u00c2\u00a0 This vulnerability may allow an unauthenticated network-based attacker to bypass the authentication mechanism of the VC4 visualization on affected devices. The impact of this vulnerability depends on the functionality provided in the visualization. This issue affects B&R VC4: from 3.* through 3.96.7, from 4.0* through 4.06.7, from 4.1* through 4.16.3, from 4.2* through 4.26.8, from 4.3* through 4.34.6, from 4.4* through 4.45.1, from 4.5* through 4.45.3, from 4.7* through 4.72.9.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-14T16:26:03.000000Z"}]}