Search

Find a vulnerability

Search criteria

    22 vulnerabilities found for UWP 3.0 Monitoring Gateway and Controller by Carlo Gavazzi

    CVE-2022-28816 (GCVE-0-2022-28816)

    Vulnerability from nvd – Published: 2022-09-28 13:45 – Updated: 2025-05-20 20:36
    VLAI
    Title
    Reflected XSS in Carlo Gavazzi UWP 3.0
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy is prone to reflected XSS which only affects the Sentilo service.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Cross-site Scripting (XSS)
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:03:53.101Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-28816",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-20T20:36:37.829229Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-20T20:36:50.107Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy is prone to reflected XSS which only affects the Sentilo service."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.1,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Cross-site Scripting (XSS)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:37.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Reflected XSS in Carlo Gavazzi UWP 3.0",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-28816",
              "STATE": "PUBLIC",
              "TITLE": "Reflected XSS in Carlo Gavazzi UWP 3.0"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy is prone to reflected XSS which only affects the Sentilo service."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.1,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-79 Cross-site Scripting (XSS)"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-28816",
        "datePublished": "2022-09-28T13:45:37.000Z",
        "dateReserved": "2022-04-08T00:00:00.000Z",
        "dateUpdated": "2025-05-20T20:36:50.107Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-28815 (GCVE-0-2022-28815)

    Vulnerability from nvd – Published: 2022-09-28 13:45 – Updated: 2025-05-20 20:36
    VLAI
    Title
    SQL-Injection in Carlo Gavazzi UWP 3.0 Sentilo Proxy
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy server was discovered to contain a SQL injection vulnerability allowing an attacker to query other tables of the Sentilo service.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:03:52.972Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-28815",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-20T20:35:58.425675Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-20T20:36:22.425Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy server was discovered to contain a SQL injection vulnerability allowing an attacker to query other tables of the Sentilo service."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 2.7,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 SQL Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:36.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "SQL-Injection in Carlo Gavazzi UWP 3.0 Sentilo Proxy ",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-28815",
              "STATE": "PUBLIC",
              "TITLE": "SQL-Injection in Carlo Gavazzi UWP 3.0 Sentilo Proxy "
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy server was discovered to contain a SQL injection vulnerability allowing an attacker to query other tables of the Sentilo service."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 2.7,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-89 SQL Injection"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-28815",
        "datePublished": "2022-09-28T13:45:36.000Z",
        "dateReserved": "2022-04-08T00:00:00.000Z",
        "dateUpdated": "2025-05-20T20:36:22.425Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-28814 (GCVE-0-2022-28814)

    Vulnerability from nvd – Published: 2022-09-28 13:45 – Updated: 2025-05-20 20:35
    VLAI
    Title
    Path traversal in Carlo Gavazzi UWP 3.0 could lead to full device access
    Summary
    Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 was discovered to be vulnerable to a relative path traversal vulnerability which enables remote attackers to read arbitrary files and gain full control of the device.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-23 - Relative Path Traversal
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:03:53.143Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-28814",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-20T20:35:33.774091Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-20T20:35:41.068Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 was discovered to be vulnerable to a relative path traversal vulnerability which enables remote attackers to read arbitrary files and gain full control of the device."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-23",
                  "description": "CWE-23 Relative Path Traversal",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:35.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Path traversal in Carlo Gavazzi UWP 3.0 could lead to full device access",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-28814",
              "STATE": "PUBLIC",
              "TITLE": "Path traversal in Carlo Gavazzi UWP 3.0 could lead to full device access"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 was discovered to be vulnerable to a relative path traversal vulnerability which enables remote attackers to read arbitrary files and gain full control of the device."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-23 Relative Path Traversal"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-28814",
        "datePublished": "2022-09-28T13:45:35.000Z",
        "dateReserved": "2022-04-08T00:00:00.000Z",
        "dateUpdated": "2025-05-20T20:35:41.068Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-28813 (GCVE-0-2022-28813)

    Vulnerability from nvd – Published: 2022-09-28 00:00 – Updated: 2025-05-21 14:58
    VLAI
    Title
    SQL-injection in Car Park Server 3.0 allows for full database access.
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of an SQL-injection to gain access to a volatile temporary database with the current states of the device.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:03:53.135Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-28813",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:58:13.461268Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:58:20.935Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of an SQL-injection to gain access to a volatile temporary database with the current states of the device."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 SQL Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-11-02T00:00:00.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "SQL-injection in Car Park Server 3.0 allows for full database access.",
          "x_generator": {
            "engine": "vulnogram 0.1.0-rc1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-28813",
        "datePublished": "2022-09-28T00:00:00.000Z",
        "dateReserved": "2022-04-08T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:58:20.935Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-28812 (GCVE-0-2022-28812)

    Vulnerability from nvd – Published: 2022-09-28 13:45 – Updated: 2025-05-20 20:35
    VLAI
    Title
    Use of Hard-coded Credentials in UWP3.0 allows SuperUser authentication bypass in Car Park Server.
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain SuperUser access to the device.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-798 - Use of Hard-coded Credentials
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:03:53.089Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-28812",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-20T20:34:56.326778Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-20T20:35:08.654Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain SuperUser access to the device."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-798",
                  "description": "CWE-798 Use of Hard-coded Credentials",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:33.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Use of Hard-coded Credentials in UWP3.0 allows SuperUser authentication bypass in Car Park Server.",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-28812",
              "STATE": "PUBLIC",
              "TITLE": "Use of Hard-coded Credentials in UWP3.0 allows SuperUser authentication bypass in Car Park Server."
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain SuperUser access to the device."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-798 Use of Hard-coded Credentials"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-28812",
        "datePublished": "2022-09-28T13:45:33.000Z",
        "dateReserved": "2022-04-08T00:00:00.000Z",
        "dateUpdated": "2025-05-20T20:35:08.654Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-28811 (GCVE-0-2022-28811)

    Vulnerability from nvd – Published: 2022-09-28 13:45 – Updated: 2025-05-21 14:34
    VLAI
    Title
    Possible command injection in Car Park Server in Carlo Gavazzi UWP3.0
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could utilize an improper input validation on an API-submitted parameter to execute arbitrary OS commands.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-78 - OS Command Injection
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:03:53.054Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-28811",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:34:00.547711Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:34:10.950Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could utilize an improper input validation on an API-submitted parameter to execute arbitrary OS commands."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "CWE-78 OS Command Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:32.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Possible command injection in Car Park Server in Carlo Gavazzi UWP3.0",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-28811",
              "STATE": "PUBLIC",
              "TITLE": "Possible command injection in Car Park Server in Carlo Gavazzi UWP3.0"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could utilize an improper input validation on an API-submitted parameter to execute arbitrary OS commands."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-78 OS Command Injection"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-28811",
        "datePublished": "2022-09-28T13:45:32.000Z",
        "dateReserved": "2022-04-08T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:34:10.950Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-22526 (GCVE-0-2022-22526)

    Vulnerability from nvd – Published: 2022-09-28 13:45 – Updated: 2025-05-21 14:35
    VLAI
    Title
    Missing authentication for API in Carlo Gavazzi UWP 3.0 Car Park Server
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a missing authentication allows for full access via API.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-306 - Missing Authentication for Critical Function
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T03:14:55.451Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-22526",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:35:13.542125Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:35:22.971Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a missing authentication allows for full access via API."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-306",
                  "description": "CWE-306 Missing Authentication for Critical Function",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:31.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Missing authentication for API in Carlo Gavazzi UWP 3.0 Car Park Server",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-22526",
              "STATE": "PUBLIC",
              "TITLE": "Missing authentication for API in Carlo Gavazzi UWP 3.0 Car Park Server"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a missing authentication allows for full access via API."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-306 Missing Authentication for Critical Function"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-22526",
        "datePublished": "2022-09-28T13:45:31.000Z",
        "dateReserved": "2022-01-03T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:35:22.971Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-22525 (GCVE-0-2022-22525)

    Vulnerability from nvd – Published: 2022-09-28 13:45 – Updated: 2025-05-21 14:36
    VLAI
    Title
    Command injection in restore function of Carlo Gavazzi UWP3.0 allows for command injection
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an remote attacker with admin rights could execute arbitrary commands due to missing input sanitization in the backup restore function
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T03:14:55.414Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-22525",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:36:46.092109Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:36:52.620Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an remote attacker with admin rights could execute arbitrary commands due to missing input sanitization in the backup restore function"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:30.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Command injection in restore function of Carlo Gavazzi UWP3.0 allows for command injection",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-22525",
              "STATE": "PUBLIC",
              "TITLE": "Command injection in restore function of Carlo Gavazzi UWP3.0 allows for command injection"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an remote attacker with admin rights could execute arbitrary commands due to missing input sanitization in the backup restore function"
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-20 Improper Input Validation"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-22525",
        "datePublished": "2022-09-28T13:45:30.000Z",
        "dateReserved": "2022-01-03T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:36:52.620Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-22524 (GCVE-0-2022-22524)

    Vulnerability from nvd – Published: 2022-09-28 13:45 – Updated: 2025-05-21 14:37
    VLAI
    Title
    SQL-injection in Carlo Gavazzi UWP 3.0 allows for full database access
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an unauthenticated remote attacker could utilize a SQL-Injection vulnerability to gain full database access, modify users and stop services .
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T03:14:55.430Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-22524",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:37:06.336805Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:37:14.217Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an unauthenticated remote attacker could utilize a SQL-Injection vulnerability to gain full database access, modify users and stop services ."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.4,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 SQL Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:30.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "SQL-injection in Carlo Gavazzi UWP 3.0 allows for full database access",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-22524",
              "STATE": "PUBLIC",
              "TITLE": "SQL-injection in Carlo Gavazzi UWP 3.0 allows for full database access"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an unauthenticated remote attacker could utilize a SQL-Injection vulnerability to gain full database access, modify users and stop services ."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.4,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-89 SQL Injection"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-22524",
        "datePublished": "2022-09-28T13:45:30.000Z",
        "dateReserved": "2022-01-03T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:37:14.217Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-22523 (GCVE-0-2022-22523)

    Vulnerability from nvd – Published: 2022-09-28 13:45 – Updated: 2025-05-21 14:37
    VLAI
    Title
    Carlo Gavazzi UWP 3.0 WebApp allows for authentication bypass
    Summary
    An improper authentication vulnerability exists in the Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 Web-App which allows an authentication bypass to the context of an unauthorised user if free-access is disabled.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-287 - Improper Authentication
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T03:14:55.446Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-22523",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:37:34.610674Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:37:40.839Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An improper authentication vulnerability exists in the Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 Web-App which allows an authentication bypass to the context of an unauthorised user if free-access is disabled."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-287",
                  "description": "CWE-287 Improper Authentication",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:29.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Carlo Gavazzi UWP 3.0 WebApp allows for authentication bypass",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-22523",
              "STATE": "PUBLIC",
              "TITLE": "Carlo Gavazzi UWP 3.0 WebApp allows for authentication bypass"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An improper authentication vulnerability exists in the Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 Web-App which allows an authentication bypass to the context of an unauthorised user if free-access is disabled."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-287 Improper Authentication"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-22523",
        "datePublished": "2022-09-28T13:45:29.000Z",
        "dateReserved": "2022-01-03T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:37:40.839Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-22522 (GCVE-0-2022-22522)

    Vulnerability from nvd – Published: 2022-09-28 13:45 – Updated: 2025-05-21 14:37
    VLAI
    Title
    Hard-coded credentials in Carlo Gavazzi UWP3.0 allows for authentication bypass and full control of the device
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain full access to the device.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-798 - Use of Hard-coded Credentials
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T03:14:55.417Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-22522",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:37:53.478022Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:37:59.658Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain full access to the device."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-798",
                  "description": "CWE-798 Use of Hard-coded Credentials",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:28.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Hard-coded credentials in Carlo Gavazzi UWP3.0 allows for authentication bypass and full control of the device",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-22522",
              "STATE": "PUBLIC",
              "TITLE": "Hard-coded credentials in Carlo Gavazzi UWP3.0 allows for authentication bypass and full control of the device"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain full access to the device."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-798 Use of Hard-coded Credentials"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-22522",
        "datePublished": "2022-09-28T13:45:28.000Z",
        "dateReserved": "2022-01-03T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:37:59.658Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-28816 (GCVE-0-2022-28816)

    Vulnerability from cvelistv5 – Published: 2022-09-28 13:45 – Updated: 2025-05-20 20:36
    VLAI
    Title
    Reflected XSS in Carlo Gavazzi UWP 3.0
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy is prone to reflected XSS which only affects the Sentilo service.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Cross-site Scripting (XSS)
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:03:53.101Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-28816",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-20T20:36:37.829229Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-20T20:36:50.107Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy is prone to reflected XSS which only affects the Sentilo service."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.1,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Cross-site Scripting (XSS)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:37.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Reflected XSS in Carlo Gavazzi UWP 3.0",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-28816",
              "STATE": "PUBLIC",
              "TITLE": "Reflected XSS in Carlo Gavazzi UWP 3.0"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy is prone to reflected XSS which only affects the Sentilo service."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.1,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-79 Cross-site Scripting (XSS)"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-28816",
        "datePublished": "2022-09-28T13:45:37.000Z",
        "dateReserved": "2022-04-08T00:00:00.000Z",
        "dateUpdated": "2025-05-20T20:36:50.107Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-28815 (GCVE-0-2022-28815)

    Vulnerability from cvelistv5 – Published: 2022-09-28 13:45 – Updated: 2025-05-20 20:36
    VLAI
    Title
    SQL-Injection in Carlo Gavazzi UWP 3.0 Sentilo Proxy
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy server was discovered to contain a SQL injection vulnerability allowing an attacker to query other tables of the Sentilo service.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:03:52.972Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-28815",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-20T20:35:58.425675Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-20T20:36:22.425Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy server was discovered to contain a SQL injection vulnerability allowing an attacker to query other tables of the Sentilo service."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 2.7,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 SQL Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:36.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "SQL-Injection in Carlo Gavazzi UWP 3.0 Sentilo Proxy ",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-28815",
              "STATE": "PUBLIC",
              "TITLE": "SQL-Injection in Carlo Gavazzi UWP 3.0 Sentilo Proxy "
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy server was discovered to contain a SQL injection vulnerability allowing an attacker to query other tables of the Sentilo service."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 2.7,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-89 SQL Injection"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-28815",
        "datePublished": "2022-09-28T13:45:36.000Z",
        "dateReserved": "2022-04-08T00:00:00.000Z",
        "dateUpdated": "2025-05-20T20:36:22.425Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-28814 (GCVE-0-2022-28814)

    Vulnerability from cvelistv5 – Published: 2022-09-28 13:45 – Updated: 2025-05-20 20:35
    VLAI
    Title
    Path traversal in Carlo Gavazzi UWP 3.0 could lead to full device access
    Summary
    Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 was discovered to be vulnerable to a relative path traversal vulnerability which enables remote attackers to read arbitrary files and gain full control of the device.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-23 - Relative Path Traversal
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:03:53.143Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-28814",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-20T20:35:33.774091Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-20T20:35:41.068Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 was discovered to be vulnerable to a relative path traversal vulnerability which enables remote attackers to read arbitrary files and gain full control of the device."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-23",
                  "description": "CWE-23 Relative Path Traversal",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:35.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Path traversal in Carlo Gavazzi UWP 3.0 could lead to full device access",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-28814",
              "STATE": "PUBLIC",
              "TITLE": "Path traversal in Carlo Gavazzi UWP 3.0 could lead to full device access"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 was discovered to be vulnerable to a relative path traversal vulnerability which enables remote attackers to read arbitrary files and gain full control of the device."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-23 Relative Path Traversal"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-28814",
        "datePublished": "2022-09-28T13:45:35.000Z",
        "dateReserved": "2022-04-08T00:00:00.000Z",
        "dateUpdated": "2025-05-20T20:35:41.068Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-28812 (GCVE-0-2022-28812)

    Vulnerability from cvelistv5 – Published: 2022-09-28 13:45 – Updated: 2025-05-20 20:35
    VLAI
    Title
    Use of Hard-coded Credentials in UWP3.0 allows SuperUser authentication bypass in Car Park Server.
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain SuperUser access to the device.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-798 - Use of Hard-coded Credentials
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:03:53.089Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-28812",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-20T20:34:56.326778Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-20T20:35:08.654Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain SuperUser access to the device."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-798",
                  "description": "CWE-798 Use of Hard-coded Credentials",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:33.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Use of Hard-coded Credentials in UWP3.0 allows SuperUser authentication bypass in Car Park Server.",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-28812",
              "STATE": "PUBLIC",
              "TITLE": "Use of Hard-coded Credentials in UWP3.0 allows SuperUser authentication bypass in Car Park Server."
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain SuperUser access to the device."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-798 Use of Hard-coded Credentials"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-28812",
        "datePublished": "2022-09-28T13:45:33.000Z",
        "dateReserved": "2022-04-08T00:00:00.000Z",
        "dateUpdated": "2025-05-20T20:35:08.654Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-28811 (GCVE-0-2022-28811)

    Vulnerability from cvelistv5 – Published: 2022-09-28 13:45 – Updated: 2025-05-21 14:34
    VLAI
    Title
    Possible command injection in Car Park Server in Carlo Gavazzi UWP3.0
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could utilize an improper input validation on an API-submitted parameter to execute arbitrary OS commands.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-78 - OS Command Injection
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:03:53.054Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-28811",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:34:00.547711Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:34:10.950Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could utilize an improper input validation on an API-submitted parameter to execute arbitrary OS commands."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "CWE-78 OS Command Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:32.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Possible command injection in Car Park Server in Carlo Gavazzi UWP3.0",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-28811",
              "STATE": "PUBLIC",
              "TITLE": "Possible command injection in Car Park Server in Carlo Gavazzi UWP3.0"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could utilize an improper input validation on an API-submitted parameter to execute arbitrary OS commands."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-78 OS Command Injection"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-28811",
        "datePublished": "2022-09-28T13:45:32.000Z",
        "dateReserved": "2022-04-08T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:34:10.950Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-22526 (GCVE-0-2022-22526)

    Vulnerability from cvelistv5 – Published: 2022-09-28 13:45 – Updated: 2025-05-21 14:35
    VLAI
    Title
    Missing authentication for API in Carlo Gavazzi UWP 3.0 Car Park Server
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a missing authentication allows for full access via API.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-306 - Missing Authentication for Critical Function
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T03:14:55.451Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-22526",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:35:13.542125Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:35:22.971Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a missing authentication allows for full access via API."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-306",
                  "description": "CWE-306 Missing Authentication for Critical Function",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:31.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Missing authentication for API in Carlo Gavazzi UWP 3.0 Car Park Server",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-22526",
              "STATE": "PUBLIC",
              "TITLE": "Missing authentication for API in Carlo Gavazzi UWP 3.0 Car Park Server"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a missing authentication allows for full access via API."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-306 Missing Authentication for Critical Function"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-22526",
        "datePublished": "2022-09-28T13:45:31.000Z",
        "dateReserved": "2022-01-03T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:35:22.971Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-22524 (GCVE-0-2022-22524)

    Vulnerability from cvelistv5 – Published: 2022-09-28 13:45 – Updated: 2025-05-21 14:37
    VLAI
    Title
    SQL-injection in Carlo Gavazzi UWP 3.0 allows for full database access
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an unauthenticated remote attacker could utilize a SQL-Injection vulnerability to gain full database access, modify users and stop services .
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T03:14:55.430Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-22524",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:37:06.336805Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:37:14.217Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an unauthenticated remote attacker could utilize a SQL-Injection vulnerability to gain full database access, modify users and stop services ."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.4,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 SQL Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:30.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "SQL-injection in Carlo Gavazzi UWP 3.0 allows for full database access",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-22524",
              "STATE": "PUBLIC",
              "TITLE": "SQL-injection in Carlo Gavazzi UWP 3.0 allows for full database access"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an unauthenticated remote attacker could utilize a SQL-Injection vulnerability to gain full database access, modify users and stop services ."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.4,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-89 SQL Injection"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-22524",
        "datePublished": "2022-09-28T13:45:30.000Z",
        "dateReserved": "2022-01-03T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:37:14.217Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-22525 (GCVE-0-2022-22525)

    Vulnerability from cvelistv5 – Published: 2022-09-28 13:45 – Updated: 2025-05-21 14:36
    VLAI
    Title
    Command injection in restore function of Carlo Gavazzi UWP3.0 allows for command injection
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an remote attacker with admin rights could execute arbitrary commands due to missing input sanitization in the backup restore function
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T03:14:55.414Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-22525",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:36:46.092109Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:36:52.620Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an remote attacker with admin rights could execute arbitrary commands due to missing input sanitization in the backup restore function"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:30.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Command injection in restore function of Carlo Gavazzi UWP3.0 allows for command injection",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-22525",
              "STATE": "PUBLIC",
              "TITLE": "Command injection in restore function of Carlo Gavazzi UWP3.0 allows for command injection"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an remote attacker with admin rights could execute arbitrary commands due to missing input sanitization in the backup restore function"
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-20 Improper Input Validation"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-22525",
        "datePublished": "2022-09-28T13:45:30.000Z",
        "dateReserved": "2022-01-03T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:36:52.620Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-22523 (GCVE-0-2022-22523)

    Vulnerability from cvelistv5 – Published: 2022-09-28 13:45 – Updated: 2025-05-21 14:37
    VLAI
    Title
    Carlo Gavazzi UWP 3.0 WebApp allows for authentication bypass
    Summary
    An improper authentication vulnerability exists in the Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 Web-App which allows an authentication bypass to the context of an unauthorised user if free-access is disabled.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-287 - Improper Authentication
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T03:14:55.446Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-22523",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:37:34.610674Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:37:40.839Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An improper authentication vulnerability exists in the Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 Web-App which allows an authentication bypass to the context of an unauthorised user if free-access is disabled."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-287",
                  "description": "CWE-287 Improper Authentication",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:29.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Carlo Gavazzi UWP 3.0 WebApp allows for authentication bypass",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-22523",
              "STATE": "PUBLIC",
              "TITLE": "Carlo Gavazzi UWP 3.0 WebApp allows for authentication bypass"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An improper authentication vulnerability exists in the Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 Web-App which allows an authentication bypass to the context of an unauthorised user if free-access is disabled."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-287 Improper Authentication"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-22523",
        "datePublished": "2022-09-28T13:45:29.000Z",
        "dateReserved": "2022-01-03T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:37:40.839Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-22522 (GCVE-0-2022-22522)

    Vulnerability from cvelistv5 – Published: 2022-09-28 13:45 – Updated: 2025-05-21 14:37
    VLAI
    Title
    Hard-coded credentials in Carlo Gavazzi UWP3.0 allows for authentication bypass and full control of the device
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain full access to the device.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-798 - Use of Hard-coded Credentials
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T03:14:55.417Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-22522",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:37:53.478022Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:37:59.658Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain full access to the device."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-798",
                  "description": "CWE-798 Use of Hard-coded Credentials",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-09-28T13:45:28.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "Hard-coded credentials in Carlo Gavazzi UWP3.0 allows for authentication bypass and full control of the device",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "info@cert.vde.com",
              "ID": "CVE-2022-22522",
              "STATE": "PUBLIC",
              "TITLE": "Hard-coded credentials in Carlo Gavazzi UWP3.0 allows for authentication bypass and full control of the device"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "8",
                                "version_value": "8.5.0.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "CPY Car Park Server",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "2",
                                "version_value": "2.8.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Carlo Gavazzi"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Vera Mens from Claroty Research"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain full access to the device."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-798 Use of Hard-coded Credentials"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
                  "refsource": "CONFIRM",
                  "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
                }
              ]
            },
            "source": {
              "advisory": "VDE-2022-029",
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-22522",
        "datePublished": "2022-09-28T13:45:28.000Z",
        "dateReserved": "2022-01-03T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:37:59.658Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-28813 (GCVE-0-2022-28813)

    Vulnerability from cvelistv5 – Published: 2022-09-28 00:00 – Updated: 2025-05-21 14:58
    VLAI
    Title
    SQL-injection in Car Park Server 3.0 allows for full database access.
    Summary
    In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of an SQL-injection to gain access to a volatile temporary database with the current states of the device.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Credits
    Vera Mens from Claroty Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:03:53.135Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-28813",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-21T14:58:13.461268Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-21T14:58:20.935Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "8.5.0.3",
                  "status": "affected",
                  "version": "8",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "CPY Car Park Server",
              "vendor": "Carlo Gavazzi",
              "versions": [
                {
                  "lessThan": "2.8.3",
                  "status": "affected",
                  "version": "2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Vera Mens from Claroty Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of an SQL-injection to gain access to a volatile temporary database with the current states of the device."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 SQL Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-11-02T00:00:00.000Z",
            "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
            "shortName": "CERTVDE"
          },
          "references": [
            {
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ],
          "source": {
            "advisory": "VDE-2022-029",
            "discovery": "EXTERNAL"
          },
          "title": "SQL-injection in Car Park Server 3.0 allows for full database access.",
          "x_generator": {
            "engine": "vulnogram 0.1.0-rc1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "assignerShortName": "CERTVDE",
        "cveId": "CVE-2022-28813",
        "datePublished": "2022-09-28T00:00:00.000Z",
        "dateReserved": "2022-04-08T00:00:00.000Z",
        "dateUpdated": "2025-05-21T14:58:20.935Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }