Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CVE-2022-41989
Vulnerability Description
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 does not validate the length of RTLS report payloads during communication. This allows an attacker to send an exceedingly long payload, resulting in an out-of-bounds write to cause a denial-of-service condition or code execution.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
Sewio Real-Time Location System (RTLS) Studio 缓冲区错误漏洞
Vulnerability Description
Sewio Real-Time Location System (RTLS) Studio是Sewio公司的一个实时定位系统。 Sewio Real-Time Location System (RTLS) Studio 2.0.0 版本到 2.6.2 版本存在缓冲区错误漏洞,该漏洞源于在通信期间不验证 RTLS 报告有效载荷的长度。
CVSS Information
N/A
Vulnerability Type
N/A