Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CVE-2022-47911
Vulnerability Description
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 does not properly validate the input module name to the backup services of the software. This could allow a remote attacker to access sensitive functions of the application and execute arbitrary system commands.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
Sewio Real-Time Location System (RTLS) Studio 操作系统命令注入漏洞
Vulnerability Description
Sewio Real-Time Location System (RTLS) Studio是Sewio公司的一个实时定位系统。 Sewio Real-Time Location System (RTLS) Studio 2.0.0 版本到 2.6.2 版本存在操作系统命令注入漏洞,该漏洞源于没有正确验证软件备份服务的输入模块名称。 这可能允许远程攻击者访问应用程序的敏感功能并执行任意系统命令。
CVSS Information
N/A
Vulnerability Type
N/A