A path traversal vulnerability exists in multiple Pilz products. An unauthenticated local attacker could use a zipped, malicious configuration file to trigger arbitrary file writes ('zip-slip'). File writes do not affect confidentiality or availability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pilz pas_4000 |
||
pliz pnozmulti configurator |
||
pliz pasmotion |
||
pliz pascal |
||
pliz pasconnect |