| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-28815 | SQL-Injection in Carlo Gavazzi UWP 3.0 Sentilo Proxy | Carlo Gavazzi | UWP 3.0 Monitoring Gateway and Controller | Low | 2.7 | 2022-09-28 13:45:36 | Deep Dive |
| CVE-2022-28814 | Path traversal in Carlo Gavazzi UWP 3.0 could lead to full device access | Carlo Gavazzi | UWP 3.0 Monitoring Gateway and Controller | Critical | 9.8 | 2022-09-28 13:45:35 | Deep Dive |
| CVE-2022-28812 | Use of Hard-coded Credentials in UWP3.0 allows SuperUser authentication bypass in Car Park Server. | Carlo Gavazzi | UWP 3.0 Monitoring Gateway and Controller | Critical | 9.8 | 2022-09-28 13:45:33 | Deep Dive |
| CVE-2022-28811 | Possible command injection in Car Park Server in Carlo Gavazzi UWP3.0 | Carlo Gavazzi | UWP 3.0 Monitoring Gateway and Controller | Critical | 9.8 | 2022-09-28 13:45:32 | Deep Dive |
| CVE-2022-22526 | Missing authentication for API in Carlo Gavazzi UWP 3.0 Car Park Server | Carlo Gavazzi | UWP 3.0 Monitoring Gateway and Controller | Critical | 9.8 | 2022-09-28 13:45:31 | Deep Dive |
| CVE-2022-22525 | Command injection in restore function of Carlo Gavazzi UWP3.0 allows for command injection | Carlo Gavazzi | UWP 3.0 Monitoring Gateway and Controller | High | 7.2 | 2022-09-28 13:45:30 | Deep Dive |
| CVE-2022-22524 | SQL-injection in Carlo Gavazzi UWP 3.0 allows for full database access | Carlo Gavazzi | UWP 3.0 Monitoring Gateway and Controller | Critical | 9.4 | 2022-09-28 13:45:30 | Deep Dive |
| CVE-2022-22523 | Carlo Gavazzi UWP 3.0 WebApp allows for authentication bypass | Carlo Gavazzi | UWP 3.0 Monitoring Gateway and Controller | High | 7.5 | 2022-09-28 13:45:29 | Deep Dive |
| CVE-2022-22522 | Hard-coded credentials in Carlo Gavazzi UWP3.0 allows for authentication bypass and full control of the device | Carlo Gavazzi | UWP 3.0 Monitoring Gateway and Controller | Critical | 9.8 | 2022-09-28 13:45:28 | Deep Dive |
| CVE-2022-28813 | SQL-injection in Car Park Server 3.0 allows for full database access. | Carlo Gavazzi | UWP 3.0 Monitoring Gateway and Controller | High | 7.5 | 2022-09-28 00:00:00 | Deep Dive |
| CVE-2022-1700 | Forcepoint Data Loss Prevention 代码问题漏洞 | Forcepoint | Data Loss Prevention (DLP) | High | 7.5 | 2022-09-12 18:07:05 | Deep Dive |
| CVE-2022-2310 | Skyhigh SWG Authentication bypass vulnerability | Skyhigh Security | Skyhigh Secure Web Gateway (SWG) | Critical | 10.0 | 2022-07-27 09:20:11 | Deep Dive |
| CVE-2020-6590 | Forcepoint Web Security Content Gateway 代码问题漏洞 | - | Forcepoint Web Security Content Gateway | 高危 | - | 2021-04-08 21:32:59 | Deep Dive |
| CVE-2021-25692 | Check Point Security Gateway 安全漏洞 | - | Teradici PCoIP Connection Manager and Security Gateway | 中危 | - | 2021-04-06 19:21:50 | Deep Dive |
| CVE-2019-8462 | Check Point R80.30 Security Gateway 安全漏洞 | - | Check Point Security Gateway | 高危 | - | 2019-10-02 16:37:41 | Deep Dive |
| CVE-2018-7340 | Multiple SAML libraries may allow authentication bypass via incorrect XML canonicalization and DOM traversal | Duo Security | Duo Network Gateway | 高危 | - | 2019-04-17 14:01:03 | Deep Dive |
| CVE-2019-6528 | 多款PSI GridConnect GmbH产品跨站脚本漏洞 | ICS-CERT | PSI GridConnect GmbH (formerly known as PSI Nentec GmbH) Telecontrol Gateway and Smart Telecontrol Unit family, IEC104 Security Proxy. | 高危 | - | 2019-03-05 21:00:00 | Deep Dive |
| CVE-2017-3470 | Oracle Communications Security Gateway 安全漏洞 | Oracle Corporation | Communications Security Gateway | 中危 | - | 2017-04-24 19:00:00 | Deep Dive |