Improper Input Validation vulnerability in PC Worx Automation Suite of Phoenix Contact up to version 1.88 could allow an attacker with a manipulated project file to unpack arbitrary files outside of the selected project directory.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://cert.vde.com/en/advisories/VDE-2021-052/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: CERTVDE
Published: 2021-11-04T09:50:10.155218Z
Updated: 2024-09-16T18:09:20.367Z
Reserved: 2021-06-10T00:00:00
Link: CVE-2021-34597
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-11-04T10:15:07.893
Modified: 2021-11-08T13:55:43.450
Link: CVE-2021-34597
Redhat
No data.