What the vulnerability does
01Description
: Relative Path Traversal vulnerability in B&R Industrial Automation Automation Studio allows Relative Path Traversal.This issue affects Automation Studio: from 4.0 through 4.12.
CVE-2021-22281
MEDIUM
CVE-2021-22281: Zip Slip Vulnerability in B&R Automation Studio Project Import
CVSS base score
6.3/10
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N
Key dates
02Disclosure timeline
February 2, 2024
CVE published
August 21, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-15225 Sunnet|WMPro - Arbitrary File Read
CVE-2023-0511 AM Java Policy Agent path traversal
CVE-2022-23854
CVE-2020-25150 B. Braun SpaceCom, Battery Pack SP with Wi-Fi, and Data module compactplus
CVE-2025-10249 Slider Revolution <= 6.7.37 - Missing Authorization to Authenticated (Contributor+) Arbitrary File Read
