Improper Input Validation vulnerability in PC Worx Automation Suite of Phoenix Contact up to version 1.88 could allow an attacker with a manipulated project file to unpack arbitrary files outside of the selected project directory.
References
Link | Resource |
---|---|
https://cert.vde.com/en/advisories/VDE-2021-052/ | Mitigation Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: CERTVDE
Published: 2021-11-03T00:00:00
Updated: 2021-11-04T09:50:10
Reserved: 2021-06-10T00:00:00
Link: CVE-2021-34597
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-11-04T10:15:07.893
Modified: 2021-11-08T13:55:43.450
Link: CVE-2021-34597
JSON object: View
Redhat Information
No data.
CWE