Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gavazziautomation cpy car park server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-28811
In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could utilize an improper input validation on an API-submitted parameter to execute arbitrary OS commands.
Gavazziautomation Cpy Car Park Server
Gavazziautomation Uwp 3.0 Monitoring Gateway And Controller Firmware
NA
CVE-2022-28812
In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain SuperUser access to the device.
Gavazziautomation Cpy Car Park Server
Gavazziautomation Uwp 3.0 Monitoring Gateway And Controller Firmware
NA
CVE-2022-28813
In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of an SQL-injection to gain access to a volatile temporary database with the current states of the device.
Gavazziautomation Cpy Car Park Server
Gavazziautomation Uwp 3.0 Monitoring Gateway And Controller Firmware
NA
CVE-2022-28814
Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 exists to be vulnerable to a relative path traversal vulnerability which enables remote malicious users to read arbitrary files and gain full control of the device.
Gavazziautomation Cpy Car Park Server
Gavazziautomation Uwp 3.0 Monitoring Gateway And Controller Firmware
NA
CVE-2022-28815
In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy server exists to contain a SQL injection vulnerability allowing an malicious user to query other tables of the Sentilo service.
Gavazziautomation Cpy Car Park Server
Gavazziautomation Uwp 3.0 Monitoring Gateway And Controller Firmware
NA
CVE-2022-28816
In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy is prone to reflected XSS which only affects the Sentilo service.
Gavazziautomation Cpy Car Park Server
Gavazziautomation Uwp 3.0 Monitoring Gateway And Controller Firmware
NA
CVE-2022-22526
In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a missing authentication allows for full access via API.
Gavazziautomation Cpy Car Park Server
Gavazziautomation Uwp 3.0 Monitoring Gateway And Controller Firmware
NA
CVE-2022-22522
In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain full access to the device.
Gavazziautomation Cpy Car Park Server
Gavazziautomation Uwp 3.0 Monitoring Gateway And Controller Firmware
NA
CVE-2022-22523
An improper authentication vulnerability exists in the Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 Web-App which allows an authentication bypass to the context of an unauthorised user if free-access is disabled.
Gavazziautomation Cpy Car Park Server
Gavazziautomation Uwp 3.0 Monitoring Gateway And Controller Firmware
NA
CVE-2022-22524
In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an unauthenticated remote attacker could utilize a SQL-Injection vulnerability to gain full database access, modify users and stop services .
Gavazziautomation Cpy Car Park Server
Gavazziautomation Uwp 3.0 Monitoring Gateway And Controller Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »