CVE-2019-19102

PATH TRAVERSAL CWE-22
A directory traversal vulnerability in SharpZipLib used in the upgrade service in B&R Automation Studio allow unauthenticated users to write to certain local directories. The vulnerability is also known as “zip slip.”

Read more: Claroty Researchers Uncover Vulnerabilities in Industrail Automation Software

Risk Information

  • CVE ID
  • CVE-2019-19102
  • Vendor
  • B&R Automation
  • Product
  • Automation Studio
  • CVSS v3
  • 5.5