CVE-2022-40976

Summary

A path traversal vulnerability was discovered in multiple Pilz products. An unauthenticated local attacker could use a zipped, malicious configuration file to trigger arbitrary file writes ('zip-slip'). File writes do not affect confidentiality or availability.

Affected Software

VendorProductVersion RangeStatus
PILZPAScal1.0.0 <= 1.9.1affected
PILZPASconnect1.0.0 < 1.4.0affected
PILZPASmotion1.0.0 < 1.4.1affected
PILZPNOZmulti Configurator1.0.0 < 11.2.0affected
PILZPNOZmulti Configurator LTS1.0.0 < 10.14.4affected
PILZPAS40001.0.0 < 1.25.0affected

Weaknesses

  • CWE-22: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References