Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 11 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2022-28816 Reflected XSS in Carlo Gavazzi UWP 3.0 Carlo GavazziUWP 3.0 Monitoring Gateway and Controller Medium 6.1 2022-09-28 13:45:37 Deep Dive
CVE-2022-28815 SQL-Injection in Carlo Gavazzi UWP 3.0 Sentilo Proxy Carlo GavazziUWP 3.0 Monitoring Gateway and Controller Low 2.7 2022-09-28 13:45:36 Deep Dive
CVE-2022-28814 Path traversal in Carlo Gavazzi UWP 3.0 could lead to full device access Carlo GavazziUWP 3.0 Monitoring Gateway and Controller Critical 9.8 2022-09-28 13:45:35 Deep Dive
CVE-2022-28812 Use of Hard-coded Credentials in UWP3.0 allows SuperUser authentication bypass in Car Park Server. Carlo GavazziUWP 3.0 Monitoring Gateway and Controller Critical 9.8 2022-09-28 13:45:33 Deep Dive
CVE-2022-28811 Possible command injection in Car Park Server in Carlo Gavazzi UWP3.0 Carlo GavazziUWP 3.0 Monitoring Gateway and Controller Critical 9.8 2022-09-28 13:45:32 Deep Dive
CVE-2022-22526 Missing authentication for API in Carlo Gavazzi UWP 3.0 Car Park Server Carlo GavazziUWP 3.0 Monitoring Gateway and Controller Critical 9.8 2022-09-28 13:45:31 Deep Dive
CVE-2022-22524 SQL-injection in Carlo Gavazzi UWP 3.0 allows for full database access Carlo GavazziUWP 3.0 Monitoring Gateway and Controller Critical 9.4 2022-09-28 13:45:30 Deep Dive
CVE-2022-22525 Command injection in restore function of Carlo Gavazzi UWP3.0 allows for command injection Carlo GavazziUWP 3.0 Monitoring Gateway and Controller High 7.2 2022-09-28 13:45:30 Deep Dive
CVE-2022-22523 Carlo Gavazzi UWP 3.0 WebApp allows for authentication bypass Carlo GavazziUWP 3.0 Monitoring Gateway and Controller High 7.5 2022-09-28 13:45:29 Deep Dive
CVE-2022-22522 Hard-coded credentials in Carlo Gavazzi UWP3.0 allows for authentication bypass and full control of the device Carlo GavazziUWP 3.0 Monitoring Gateway and Controller Critical 9.8 2022-09-28 13:45:28 Deep Dive
CVE-2022-28813 SQL-injection in Car Park Server 3.0 allows for full database access. Carlo GavazziUWP 3.0 Monitoring Gateway and Controller High 7.5 2022-09-28 00:00:00 Deep Dive