A directory traversal vulnerability in SharpZipLib used in the upgrade service in B&R Automation Studio versions 4.0.x, 4.1.x and 4.2.x allows unauthenticated users to write to certain local directories
Reporter | Title | Published | Views | Family All 4 |
---|---|---|---|---|
Prion | Directory traversal | 29 Apr 202003:15 | – | prion |
NVD | CVE-2019-19102 | 29 Apr 202003:15 | – | nvd |
Cvelist | CVE-2019-19102 Zip Slip vulnerability in 3rd-Party library in B&R Automation Studio upgrade service | 29 Apr 202002:07 | – | cvelist |
ICS | B&R Automation Studio | 3 Apr 202012:00 | – | ics |
[
{
"product": "Automation Studio",
"vendor": "B&R",
"versions": [
{
"status": "affected",
"version": "4.0.x"
},
{
"status": "affected",
"version": "4.1.x"
},
{
"status": "affected",
"version": "4.2.x"
}
]
}
]
Source | Link |
---|---|
br-automation | www.br-automation.com/en/downloads/032020-multiple-vulnerabilities-in-automation-studio/ |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo