VYPR

PASvisu Server

by Pilz

CVEs (1)

  • CVE-2022-40977HigNov 24, 2022
    risk 0.49cvss 7.5epss 0.01

    A path traversal vulnerability was discovered in Pilz PASvisu Server before 1.12.0. An unauthenticated remote attacker could use a zipped, malicious configuration file to trigger arbitrary file writes ('zip-slip'). File writes do not affect confidentiality or availability.