Medium severity5.5NVD Advisory· Published Nov 24, 2022· Updated Jun 17, 2026
CVE-2022-40976
CVE-2022-40976
Description
A path traversal vulnerability was discovered in multiple Pilz products. An unauthenticated local attacker could use a zipped, malicious configuration file to trigger arbitrary file writes ('zip-slip'). File writes do not affect confidentiality or availability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: 1.0.0
Patches
Vulnerability mechanics
References
2- cert.vde.com/en/advisories/VDE-2022-044/nvdVendor Advisory
- cert.vde.com/en/advisories/VDE-2022-045/nvdVendor Advisory
News mentions
0No linked articles in our index yet.