3 matches found
CVE-2022-40976
creationtimestamp| type| source ---|---|--- 2022-11-24 12:28:08+00:00| seen| https://t.me/cibsecurity/53473 2025-04-25 18:08:10+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13480...
CVE-2022-40976 PILZ: Multiple products affected by ZipSlip
A path traversal vulnerability was discovered in multiple Pilz products. An unauthenticated local attacker could use a zipped, malicious configuration file to trigger arbitrary file writes 'zip-slip'. File writes do not affect confidentiality or availability...
CVE-2022-40976
The CVE-2022-40976 entry concerns a zip-slip path traversal in multiple Pilz products. An unauthenticated local attacker could supply a zipped, malicious configuration file to trigger arbitrary file writes during extraction. The impact is limited to file writes ; the description notes that confid...