https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Wed, 27 May 2026 04:33:25 +0000 https://db.gcve.eu/sighting/a5338b5e-aa31-4c7e-aa21-d9a9ffc61db0/export {"uuid": "a5338b5e-aa31-4c7e-aa21-d9a9ffc61db0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22525", "type": "seen", "source": "https://t.me/ics_cert/615", "content": "\u062a\u06cc\u0645 Claroty's Team82 \u06cc\u0627\u0632\u062f\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0627 \u062f\u0631 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u06cc IoT \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a Carlo Gavazzi \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f \u06a9\u0647 6 \u0645\u0648\u0631\u062f \u0627\u0632 \u0622\u0646\u200c\u0647\u0627 \u062d\u06cc\u0627\u062a\u06cc \u0647\u0633\u062a\u0646\u062f. \n\nCarlo Gavazzi \u06cc\u06a9 \u06af\u0631\u0648\u0647 \u0628\u06cc\u0646 \u0627\u0644\u0645\u0644\u0644\u06cc \u0627\u0633\u062a \u06a9\u0647 \u0631\u0627\u0647 \u062d\u0644 \u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0631\u0627 \u0628\u0631\u0627\u06cc \u0628\u0627\u0632\u0627\u0631\u0647\u0627\u06cc \u062c\u0647\u0627\u0646\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0635\u0646\u0639\u062a\u06cc \u0648 \u0633\u0627\u062e\u062a\u0645\u0627\u0646\u06cc \u0637\u0631\u0627\u062d\u06cc\u060c \u062a\u0648\u0644\u06cc\u062f \u0648 \u0628\u0647 \u0641\u0631\u0648\u0634 \u0645\u06cc \u0631\u0633\u0627\u0646\u062f. \u0627\u06cc\u0646 \u0634\u0631\u06a9\u062a \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0627\u0631\u0648\u067e\u0627\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627 \u0648 \u0645\u0646\u0637\u0642\u0647 \u0622\u0633\u06cc\u0627 \u0648 \u0627\u0642\u06cc\u0627\u0646\u0648\u0633\u06cc\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0634\u0628\u06a9\u0647 \u0627\u06cc \u0645\u062a\u0634\u06a9\u0644 \u0627\u0632 22 \u0634\u0631\u06a9\u062a \u062a\u062c\u0627\u0631\u06cc \u062e\u0648\u062f \u0648 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0628\u06cc\u0634 \u0627\u0632 60 \u062a\u0648\u0632\u06cc\u0639 \u06a9\u0646\u0646\u062f\u0647 \u0645\u0633\u062a\u0642\u0644 \u0645\u0644\u06cc \u0639\u0631\u0636\u0647 \u0645\u06cc \u06a9\u0646\u062f. \u0645\u0634\u06a9\u0644\u0627\u062a \u0639\u0645\u062f\u062a\u0627\u064b Carlo Gavazzi UWP3.0 \u0648 CPY Car Park Server \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f. \u0647\u0645\u0647 \u0628\u0627\u06af \u0647\u0627\u06cc \u0645\u0647\u0645 \u062f\u0627\u0631\u0627\u06cc \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 9.8 \u0647\u0633\u062a\u0646\u062f. \u0628\u0631\u062e\u06cc \u0627\u0632 \u0622\u0646\u0647\u0627 \u0628\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u0634\u062f\u0647 (CVE-2022-22522\u060c CVE-2022-28812) \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc UWP3.0 \u0648 CPY Car Park Server \u0645\u0631\u0628\u0648\u0637 \u0645\u06cc \u0634\u0648\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u063a\u06cc\u0631 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u0633\u0631\u0648\u0631 \u0648 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0628\u0631\u062e\u06cc \u062f\u06cc\u06af\u0631 \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0639\u062f\u0645 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u0633\u062a \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0627\u0632 \u0637\u0631\u06cc\u0642 API (CVE-2022-22526)\u060c \u0627\u0639\u062a\u0628\u0627\u0631 \u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u062f\u0631 \u067e\u0627\u0631\u0627\u0645\u062a\u0631 \u0627\u0631\u0633\u0627\u0644 \u0634\u062f\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 API \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 (CVE-2022-28811) \u0648 \u067e\u06cc\u0645\u0627\u06cc\u0634 \u0645\u0633\u06cc\u0631 \u0646\u0633\u0628\u06cc \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 RCE (CVE-2022-28814) \u0645\u06cc \u0634\u0648\u062f. \u0639\u0644\u0627\u0648\u0647 \u0628\u0631 \u0627\u06cc\u0646\u060c \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u062a\u0627\u06cc\u06cc\u062f \u0646\u0634\u062f\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc SQL-Injection \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647 (CVE-2022-22524) \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f\u060c \u0648 \u062f\u0631 \u0645\u0648\u0627\u0631\u062f \u062f\u06cc\u06af\u0631\u060c \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062a\u0632\u0631\u06cc\u0642 SQL \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0627\u0632 \u062f\u06cc\u06af\u0631 \u062c\u062f\u0627\u0648\u0644 \u0633\u0631\u0648\u06cc\u0633 Sentilo \u067e\u0631\u0633 \u0648 \u062c\u0648 \u06a9\u0646\u062f (CVE-2022-). 28813 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5). \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u062c\u062f\u06cc \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0627\u062f\u0631\u0633\u062a \u0627\u0633\u062a\u060c \u06a9\u0647 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u062f\u0631 \u0632\u0645\u06cc\u0646\u0647 \u06a9\u0627\u0631\u0628\u0631 (CVE-2022-22523 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5)\u060c \u0648 \u0647\u0645\u0686\u0646\u06cc\u0646 \u0627\u0639\u062a\u0628\u0627\u0631\u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a - CVE-2022-22525 (CVSS V3) \u062f\u0648\u0631 \u0632\u062f\u0647 \u0634\u0648\u062f. . \u062f\u0648\u0645\u06cc \u0628\u0647 \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0628\u0627 \u062d\u0642\u0648\u0642 \u0645\u062f\u06cc\u0631 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f \u062a\u0627 \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f. \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc UWP3.0\u060c \u067e\u0631\u0627\u06a9\u0633\u06cc Sentilo \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 XSS \u0645\u0646\u0639\u06a9\u0633 \u0634\u062f\u0647 (CVE-2022-28816 \u0628\u0627 CVSS V3 7.6) \u0642\u0631\u0627\u0631 \u0645\u06cc\u200c\u06af\u06cc\u0631\u062f. \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0628\u0627\u06cc\u062f \u0628\u0647 \u0645\u0634\u06a9\u0644\u0627\u062a \u062a\u0648\u062c\u0647 \u06a9\u0646\u0646\u062f \u0648 \u0628\u0627 \u062a\u0648\u062c\u0647 \u0628\u0647 \u0628\u062d\u0631\u0627\u0646\u06cc \u0628\u0648\u062f\u0646 \u0628\u0627\u06af \u0647\u0627\u06cc \u06cc\u0627\u0641\u062a \u0634\u062f\u0647\u060c \u062f\u0631 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0639\u062c\u0644\u0647 \u06a9\u0646\u0646\u062f.\n\n\ud83d\udc6e\u200d\u2640\ufe0f\ud83d\udc6e\u200d\u2640\ufe0f \u0628\u0627\u0632\u0646\u0634\u0631 \u0645\u0637\u0627\u0644\u0628 \u0627\u06cc\u0646 \u06a9\u0627\u0646\u0627\u0644 \u0635\u0631\u0641\u0627 \u0628\u0627 \u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u06a9\u0627\u0645\u0644 \u06a9\u0627\u0646\u0627\u0644 \u0645\u062c\u0627\u0632 \u0645\u06cc\u0628\u0627\u0634\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u062a\u0648\u06cc\u06cc\u062a\u0631:\nhttps://twitter.com/icscerti", "creation_timestamp": "2022-09-28T09:09:47.000000Z"} {"uuid": "a5338b5e-aa31-4c7e-aa21-d9a9ffc61db0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22525", "type": "seen", "source": "https://t.me/ics_cert/615", "content": "\u062a\u06cc\u0645 Claroty's Team82 \u06cc\u0627\u0632\u062f\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0627 \u062f\u0631 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u06cc IoT \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a Carlo Gavazzi \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f \u06a9\u0647 6 \u0645\u0648\u0631\u062f \u0627\u0632 \u0622\u0646\u200c\u0647\u0627 \u062d\u06cc\u0627\u062a\u06cc \u0647\u0633\u062a\u0646\u062f. \n\nCarlo Gavazzi \u06cc\u06a9 \u06af\u0631\u0648\u0647 \u0628\u06cc\u0646 \u0627\u0644\u0645\u0644\u0644\u06cc \u0627\u0633\u062a \u06a9\u0647 \u0631\u0627\u0647 \u062d\u0644 \u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0631\u0627 \u0628\u0631\u0627\u06cc \u0628\u0627\u0632\u0627\u0631\u0647\u0627\u06cc \u062c\u0647\u0627\u0646\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0635\u0646\u0639\u062a\u06cc \u0648 \u0633\u0627\u062e\u062a\u0645\u0627\u0646\u06cc \u0637\u0631\u0627\u062d\u06cc\u060c \u062a\u0648\u0644\u06cc\u062f \u0648 \u0628\u0647 \u0641\u0631\u0648\u0634 \u0645\u06cc \u0631\u0633\u0627\u0646\u062f. \u0627\u06cc\u0646 \u0634\u0631\u06a9\u062a \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0627\u0631\u0648\u067e\u0627\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627 \u0648 \u0645\u0646\u0637\u0642\u0647 \u0622\u0633\u06cc\u0627 \u0648 \u0627\u0642\u06cc\u0627\u0646\u0648\u0633\u06cc\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0634\u0628\u06a9\u0647 \u0627\u06cc \u0645\u062a\u0634\u06a9\u0644 \u0627\u0632 22 \u0634\u0631\u06a9\u062a \u062a\u062c\u0627\u0631\u06cc \u062e\u0648\u062f \u0648 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0628\u06cc\u0634 \u0627\u0632 60 \u062a\u0648\u0632\u06cc\u0639 \u06a9\u0646\u0646\u062f\u0647 \u0645\u0633\u062a\u0642\u0644 \u0645\u0644\u06cc \u0639\u0631\u0636\u0647 \u0645\u06cc \u06a9\u0646\u062f. \u0645\u0634\u06a9\u0644\u0627\u062a \u0639\u0645\u062f\u062a\u0627\u064b Carlo Gavazzi UWP3.0 \u0648 CPY Car Park Server \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f. \u0647\u0645\u0647 \u0628\u0627\u06af \u0647\u0627\u06cc \u0645\u0647\u0645 \u062f\u0627\u0631\u0627\u06cc \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 9.8 \u0647\u0633\u062a\u0646\u062f. \u0628\u0631\u062e\u06cc \u0627\u0632 \u0622\u0646\u0647\u0627 \u0628\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u0634\u062f\u0647 (CVE-2022-22522\u060c CVE-2022-28812) \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc UWP3.0 \u0648 CPY Car Park Server \u0645\u0631\u0628\u0648\u0637 \u0645\u06cc \u0634\u0648\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u063a\u06cc\u0631 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u0633\u0631\u0648\u0631 \u0648 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0628\u0631\u062e\u06cc \u062f\u06cc\u06af\u0631 \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0639\u062f\u0645 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u0633\u062a \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0627\u0632 \u0637\u0631\u06cc\u0642 API (CVE-2022-22526)\u060c \u0627\u0639\u062a\u0628\u0627\u0631 \u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u062f\u0631 \u067e\u0627\u0631\u0627\u0645\u062a\u0631 \u0627\u0631\u0633\u0627\u0644 \u0634\u062f\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 API \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 (CVE-2022-28811) \u0648 \u067e\u06cc\u0645\u0627\u06cc\u0634 \u0645\u0633\u06cc\u0631 \u0646\u0633\u0628\u06cc \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 RCE (CVE-2022-28814) \u0645\u06cc \u0634\u0648\u062f. \u0639\u0644\u0627\u0648\u0647 \u0628\u0631 \u0627\u06cc\u0646\u060c \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u062a\u0627\u06cc\u06cc\u062f \u0646\u0634\u062f\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc SQL-Injection \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647 (CVE-2022-22524) \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f\u060c \u0648 \u062f\u0631 \u0645\u0648\u0627\u0631\u062f \u062f\u06cc\u06af\u0631\u060c \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062a\u0632\u0631\u06cc\u0642 SQL \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0627\u0632 \u062f\u06cc\u06af\u0631 \u062c\u062f\u0627\u0648\u0644 \u0633\u0631\u0648\u06cc\u0633 Sentilo \u067e\u0631\u0633 \u0648 \u062c\u0648 \u06a9\u0646\u062f (CVE-2022-). 28813 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5). \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u062c\u062f\u06cc \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0627\u062f\u0631\u0633\u062a \u0627\u0633\u062a\u060c \u06a9\u0647 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u062f\u0631 \u0632\u0645\u06cc\u0646\u0647 \u06a9\u0627\u0631\u0628\u0631 (CVE-2022-22523 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5)\u060c \u0648 \u0647\u0645\u0686\u0646\u06cc\u0646 \u0627\u0639\u062a\u0628\u0627\u0631\u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a - CVE-2022-22525 (CVSS V3) \u062f\u0648\u0631 \u0632\u062f\u0647 \u0634\u0648\u062f. . \u062f\u0648\u0645\u06cc \u0628\u0647 \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0628\u0627 \u062d\u0642\u0648\u0642 \u0645\u062f\u06cc\u0631 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f \u062a\u0627 \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f. \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc UWP3.0\u060c \u067e\u0631\u0627\u06a9\u0633\u06cc Sentilo \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 XSS \u0645\u0646\u0639\u06a9\u0633 \u0634\u062f\u0647 (CVE-2022-28816 \u0628\u0627 CVSS V3 7.6) \u0642\u0631\u0627\u0631 \u0645\u06cc\u200c\u06af\u06cc\u0631\u062f. \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0628\u0627\u06cc\u062f \u0628\u0647 \u0645\u0634\u06a9\u0644\u0627\u062a \u062a\u0648\u062c\u0647 \u06a9\u0646\u0646\u062f \u0648 \u0628\u0627 \u062a\u0648\u062c\u0647 \u0628\u0647 \u0628\u062d\u0631\u0627\u0646\u06cc \u0628\u0648\u062f\u0646 \u0628\u0627\u06af \u0647\u0627\u06cc \u06cc\u0627\u0641\u062a \u0634\u062f\u0647\u060c \u062f\u0631 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0639\u062c\u0644\u0647 \u06a9\u0646\u0646\u062f.\n\n\ud83d\udc6e\u200d\u2640\ufe0f\ud83d\udc6e\u200d\u2640\ufe0f \u0628\u0627\u0632\u0646\u0634\u0631 \u0645\u0637\u0627\u0644\u0628 \u0627\u06cc\u0646 \u06a9\u0627\u0646\u0627\u0644 \u0635\u0631\u0641\u0627 \u0628\u0627 \u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u06a9\u0627\u0645\u0644 \u06a9\u0627\u0646\u0627\u0644 \u0645\u062c\u0627\u0632 \u0645\u06cc\u0628\u0627\u0634\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u062a\u0648\u06cc\u06cc\u062a\u0631:\nhttps://twitter.com/icscerti", "creation_timestamp": "2022-09-28T09:09:47.000000Z"} https://db.gcve.eu/sighting/a5338b5e-aa31-4c7e-aa21-d9a9ffc61db0/export Wed, 28 Sep 2022 09:09:47 +0000 https://db.gcve.eu/sighting/84c2a3d9-95d8-4668-8877-0056ff6a4e51/export {"uuid": "84c2a3d9-95d8-4668-8877-0056ff6a4e51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22523", "type": "seen", "source": "https://t.me/ics_cert/615", "content": "\u062a\u06cc\u0645 Claroty's Team82 \u06cc\u0627\u0632\u062f\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0627 \u062f\u0631 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u06cc IoT \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a Carlo Gavazzi \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f \u06a9\u0647 6 \u0645\u0648\u0631\u062f \u0627\u0632 \u0622\u0646\u200c\u0647\u0627 \u062d\u06cc\u0627\u062a\u06cc \u0647\u0633\u062a\u0646\u062f. \n\nCarlo Gavazzi \u06cc\u06a9 \u06af\u0631\u0648\u0647 \u0628\u06cc\u0646 \u0627\u0644\u0645\u0644\u0644\u06cc \u0627\u0633\u062a \u06a9\u0647 \u0631\u0627\u0647 \u062d\u0644 \u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0631\u0627 \u0628\u0631\u0627\u06cc \u0628\u0627\u0632\u0627\u0631\u0647\u0627\u06cc \u062c\u0647\u0627\u0646\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0635\u0646\u0639\u062a\u06cc \u0648 \u0633\u0627\u062e\u062a\u0645\u0627\u0646\u06cc \u0637\u0631\u0627\u062d\u06cc\u060c \u062a\u0648\u0644\u06cc\u062f \u0648 \u0628\u0647 \u0641\u0631\u0648\u0634 \u0645\u06cc \u0631\u0633\u0627\u0646\u062f. \u0627\u06cc\u0646 \u0634\u0631\u06a9\u062a \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0627\u0631\u0648\u067e\u0627\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627 \u0648 \u0645\u0646\u0637\u0642\u0647 \u0622\u0633\u06cc\u0627 \u0648 \u0627\u0642\u06cc\u0627\u0646\u0648\u0633\u06cc\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0634\u0628\u06a9\u0647 \u0627\u06cc \u0645\u062a\u0634\u06a9\u0644 \u0627\u0632 22 \u0634\u0631\u06a9\u062a \u062a\u062c\u0627\u0631\u06cc \u062e\u0648\u062f \u0648 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0628\u06cc\u0634 \u0627\u0632 60 \u062a\u0648\u0632\u06cc\u0639 \u06a9\u0646\u0646\u062f\u0647 \u0645\u0633\u062a\u0642\u0644 \u0645\u0644\u06cc \u0639\u0631\u0636\u0647 \u0645\u06cc \u06a9\u0646\u062f. \u0645\u0634\u06a9\u0644\u0627\u062a \u0639\u0645\u062f\u062a\u0627\u064b Carlo Gavazzi UWP3.0 \u0648 CPY Car Park Server \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f. \u0647\u0645\u0647 \u0628\u0627\u06af \u0647\u0627\u06cc \u0645\u0647\u0645 \u062f\u0627\u0631\u0627\u06cc \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 9.8 \u0647\u0633\u062a\u0646\u062f. \u0628\u0631\u062e\u06cc \u0627\u0632 \u0622\u0646\u0647\u0627 \u0628\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u0634\u062f\u0647 (CVE-2022-22522\u060c CVE-2022-28812) \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc UWP3.0 \u0648 CPY Car Park Server \u0645\u0631\u0628\u0648\u0637 \u0645\u06cc \u0634\u0648\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u063a\u06cc\u0631 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u0633\u0631\u0648\u0631 \u0648 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0628\u0631\u062e\u06cc \u062f\u06cc\u06af\u0631 \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0639\u062f\u0645 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u0633\u062a \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0627\u0632 \u0637\u0631\u06cc\u0642 API (CVE-2022-22526)\u060c \u0627\u0639\u062a\u0628\u0627\u0631 \u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u062f\u0631 \u067e\u0627\u0631\u0627\u0645\u062a\u0631 \u0627\u0631\u0633\u0627\u0644 \u0634\u062f\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 API \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 (CVE-2022-28811) \u0648 \u067e\u06cc\u0645\u0627\u06cc\u0634 \u0645\u0633\u06cc\u0631 \u0646\u0633\u0628\u06cc \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 RCE (CVE-2022-28814) \u0645\u06cc \u0634\u0648\u062f. \u0639\u0644\u0627\u0648\u0647 \u0628\u0631 \u0627\u06cc\u0646\u060c \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u062a\u0627\u06cc\u06cc\u062f \u0646\u0634\u062f\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc SQL-Injection \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647 (CVE-2022-22524) \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f\u060c \u0648 \u062f\u0631 \u0645\u0648\u0627\u0631\u062f \u062f\u06cc\u06af\u0631\u060c \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062a\u0632\u0631\u06cc\u0642 SQL \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0627\u0632 \u062f\u06cc\u06af\u0631 \u062c\u062f\u0627\u0648\u0644 \u0633\u0631\u0648\u06cc\u0633 Sentilo \u067e\u0631\u0633 \u0648 \u062c\u0648 \u06a9\u0646\u062f (CVE-2022-). 28813 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5). \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u062c\u062f\u06cc \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0627\u062f\u0631\u0633\u062a \u0627\u0633\u062a\u060c \u06a9\u0647 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u062f\u0631 \u0632\u0645\u06cc\u0646\u0647 \u06a9\u0627\u0631\u0628\u0631 (CVE-2022-22523 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5)\u060c \u0648 \u0647\u0645\u0686\u0646\u06cc\u0646 \u0627\u0639\u062a\u0628\u0627\u0631\u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a - CVE-2022-22525 (CVSS V3) \u062f\u0648\u0631 \u0632\u062f\u0647 \u0634\u0648\u062f. . \u062f\u0648\u0645\u06cc \u0628\u0647 \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0628\u0627 \u062d\u0642\u0648\u0642 \u0645\u062f\u06cc\u0631 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f \u062a\u0627 \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f. \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc UWP3.0\u060c \u067e\u0631\u0627\u06a9\u0633\u06cc Sentilo \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 XSS \u0645\u0646\u0639\u06a9\u0633 \u0634\u062f\u0647 (CVE-2022-28816 \u0628\u0627 CVSS V3 7.6) \u0642\u0631\u0627\u0631 \u0645\u06cc\u200c\u06af\u06cc\u0631\u062f. \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0628\u0627\u06cc\u062f \u0628\u0647 \u0645\u0634\u06a9\u0644\u0627\u062a \u062a\u0648\u062c\u0647 \u06a9\u0646\u0646\u062f \u0648 \u0628\u0627 \u062a\u0648\u062c\u0647 \u0628\u0647 \u0628\u062d\u0631\u0627\u0646\u06cc \u0628\u0648\u062f\u0646 \u0628\u0627\u06af \u0647\u0627\u06cc \u06cc\u0627\u0641\u062a \u0634\u062f\u0647\u060c \u062f\u0631 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0639\u062c\u0644\u0647 \u06a9\u0646\u0646\u062f.\n\n\ud83d\udc6e\u200d\u2640\ufe0f\ud83d\udc6e\u200d\u2640\ufe0f \u0628\u0627\u0632\u0646\u0634\u0631 \u0645\u0637\u0627\u0644\u0628 \u0627\u06cc\u0646 \u06a9\u0627\u0646\u0627\u0644 \u0635\u0631\u0641\u0627 \u0628\u0627 \u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u06a9\u0627\u0645\u0644 \u06a9\u0627\u0646\u0627\u0644 \u0645\u062c\u0627\u0632 \u0645\u06cc\u0628\u0627\u0634\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u062a\u0648\u06cc\u06cc\u062a\u0631:\nhttps://twitter.com/icscerti", "creation_timestamp": "2022-09-28T09:09:47.000000Z"} {"uuid": "84c2a3d9-95d8-4668-8877-0056ff6a4e51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22523", "type": "seen", "source": "https://t.me/ics_cert/615", "content": "\u062a\u06cc\u0645 Claroty's Team82 \u06cc\u0627\u0632\u062f\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0627 \u062f\u0631 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u06cc IoT \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a Carlo Gavazzi \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f \u06a9\u0647 6 \u0645\u0648\u0631\u062f \u0627\u0632 \u0622\u0646\u200c\u0647\u0627 \u062d\u06cc\u0627\u062a\u06cc \u0647\u0633\u062a\u0646\u062f. \n\nCarlo Gavazzi \u06cc\u06a9 \u06af\u0631\u0648\u0647 \u0628\u06cc\u0646 \u0627\u0644\u0645\u0644\u0644\u06cc \u0627\u0633\u062a \u06a9\u0647 \u0631\u0627\u0647 \u062d\u0644 \u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0631\u0627 \u0628\u0631\u0627\u06cc \u0628\u0627\u0632\u0627\u0631\u0647\u0627\u06cc \u062c\u0647\u0627\u0646\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0635\u0646\u0639\u062a\u06cc \u0648 \u0633\u0627\u062e\u062a\u0645\u0627\u0646\u06cc \u0637\u0631\u0627\u062d\u06cc\u060c \u062a\u0648\u0644\u06cc\u062f \u0648 \u0628\u0647 \u0641\u0631\u0648\u0634 \u0645\u06cc \u0631\u0633\u0627\u0646\u062f. \u0627\u06cc\u0646 \u0634\u0631\u06a9\u062a \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0627\u0631\u0648\u067e\u0627\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627 \u0648 \u0645\u0646\u0637\u0642\u0647 \u0622\u0633\u06cc\u0627 \u0648 \u0627\u0642\u06cc\u0627\u0646\u0648\u0633\u06cc\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0634\u0628\u06a9\u0647 \u0627\u06cc \u0645\u062a\u0634\u06a9\u0644 \u0627\u0632 22 \u0634\u0631\u06a9\u062a \u062a\u062c\u0627\u0631\u06cc \u062e\u0648\u062f \u0648 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0628\u06cc\u0634 \u0627\u0632 60 \u062a\u0648\u0632\u06cc\u0639 \u06a9\u0646\u0646\u062f\u0647 \u0645\u0633\u062a\u0642\u0644 \u0645\u0644\u06cc \u0639\u0631\u0636\u0647 \u0645\u06cc \u06a9\u0646\u062f. \u0645\u0634\u06a9\u0644\u0627\u062a \u0639\u0645\u062f\u062a\u0627\u064b Carlo Gavazzi UWP3.0 \u0648 CPY Car Park Server \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f. \u0647\u0645\u0647 \u0628\u0627\u06af \u0647\u0627\u06cc \u0645\u0647\u0645 \u062f\u0627\u0631\u0627\u06cc \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 9.8 \u0647\u0633\u062a\u0646\u062f. \u0628\u0631\u062e\u06cc \u0627\u0632 \u0622\u0646\u0647\u0627 \u0628\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u0634\u062f\u0647 (CVE-2022-22522\u060c CVE-2022-28812) \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc UWP3.0 \u0648 CPY Car Park Server \u0645\u0631\u0628\u0648\u0637 \u0645\u06cc \u0634\u0648\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u063a\u06cc\u0631 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u0633\u0631\u0648\u0631 \u0648 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0628\u0631\u062e\u06cc \u062f\u06cc\u06af\u0631 \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0639\u062f\u0645 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u0633\u062a \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0627\u0632 \u0637\u0631\u06cc\u0642 API (CVE-2022-22526)\u060c \u0627\u0639\u062a\u0628\u0627\u0631 \u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u062f\u0631 \u067e\u0627\u0631\u0627\u0645\u062a\u0631 \u0627\u0631\u0633\u0627\u0644 \u0634\u062f\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 API \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 (CVE-2022-28811) \u0648 \u067e\u06cc\u0645\u0627\u06cc\u0634 \u0645\u0633\u06cc\u0631 \u0646\u0633\u0628\u06cc \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 RCE (CVE-2022-28814) \u0645\u06cc \u0634\u0648\u062f. \u0639\u0644\u0627\u0648\u0647 \u0628\u0631 \u0627\u06cc\u0646\u060c \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u062a\u0627\u06cc\u06cc\u062f \u0646\u0634\u062f\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc SQL-Injection \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647 (CVE-2022-22524) \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f\u060c \u0648 \u062f\u0631 \u0645\u0648\u0627\u0631\u062f \u062f\u06cc\u06af\u0631\u060c \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062a\u0632\u0631\u06cc\u0642 SQL \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0627\u0632 \u062f\u06cc\u06af\u0631 \u062c\u062f\u0627\u0648\u0644 \u0633\u0631\u0648\u06cc\u0633 Sentilo \u067e\u0631\u0633 \u0648 \u062c\u0648 \u06a9\u0646\u062f (CVE-2022-). 28813 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5). \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u062c\u062f\u06cc \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0627\u062f\u0631\u0633\u062a \u0627\u0633\u062a\u060c \u06a9\u0647 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u062f\u0631 \u0632\u0645\u06cc\u0646\u0647 \u06a9\u0627\u0631\u0628\u0631 (CVE-2022-22523 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5)\u060c \u0648 \u0647\u0645\u0686\u0646\u06cc\u0646 \u0627\u0639\u062a\u0628\u0627\u0631\u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a - CVE-2022-22525 (CVSS V3) \u062f\u0648\u0631 \u0632\u062f\u0647 \u0634\u0648\u062f. . \u062f\u0648\u0645\u06cc \u0628\u0647 \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0628\u0627 \u062d\u0642\u0648\u0642 \u0645\u062f\u06cc\u0631 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f \u062a\u0627 \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f. \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc UWP3.0\u060c \u067e\u0631\u0627\u06a9\u0633\u06cc Sentilo \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 XSS \u0645\u0646\u0639\u06a9\u0633 \u0634\u062f\u0647 (CVE-2022-28816 \u0628\u0627 CVSS V3 7.6) \u0642\u0631\u0627\u0631 \u0645\u06cc\u200c\u06af\u06cc\u0631\u062f. \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0628\u0627\u06cc\u062f \u0628\u0647 \u0645\u0634\u06a9\u0644\u0627\u062a \u062a\u0648\u062c\u0647 \u06a9\u0646\u0646\u062f \u0648 \u0628\u0627 \u062a\u0648\u062c\u0647 \u0628\u0647 \u0628\u062d\u0631\u0627\u0646\u06cc \u0628\u0648\u062f\u0646 \u0628\u0627\u06af \u0647\u0627\u06cc \u06cc\u0627\u0641\u062a \u0634\u062f\u0647\u060c \u062f\u0631 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0639\u062c\u0644\u0647 \u06a9\u0646\u0646\u062f.\n\n\ud83d\udc6e\u200d\u2640\ufe0f\ud83d\udc6e\u200d\u2640\ufe0f \u0628\u0627\u0632\u0646\u0634\u0631 \u0645\u0637\u0627\u0644\u0628 \u0627\u06cc\u0646 \u06a9\u0627\u0646\u0627\u0644 \u0635\u0631\u0641\u0627 \u0628\u0627 \u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u06a9\u0627\u0645\u0644 \u06a9\u0627\u0646\u0627\u0644 \u0645\u062c\u0627\u0632 \u0645\u06cc\u0628\u0627\u0634\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u062a\u0648\u06cc\u06cc\u062a\u0631:\nhttps://twitter.com/icscerti", "creation_timestamp": "2022-09-28T09:09:47.000000Z"} https://db.gcve.eu/sighting/84c2a3d9-95d8-4668-8877-0056ff6a4e51/export Wed, 28 Sep 2022 09:09:47 +0000 https://db.gcve.eu/sighting/51a276db-215c-4199-ae5d-833f69f994a5/export {"uuid": "51a276db-215c-4199-ae5d-833f69f994a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22526", "type": "seen", "source": "https://t.me/ics_cert/615", "content": "\u062a\u06cc\u0645 Claroty's Team82 \u06cc\u0627\u0632\u062f\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0627 \u062f\u0631 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u06cc IoT \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a Carlo Gavazzi \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f \u06a9\u0647 6 \u0645\u0648\u0631\u062f \u0627\u0632 \u0622\u0646\u200c\u0647\u0627 \u062d\u06cc\u0627\u062a\u06cc \u0647\u0633\u062a\u0646\u062f. \n\nCarlo Gavazzi \u06cc\u06a9 \u06af\u0631\u0648\u0647 \u0628\u06cc\u0646 \u0627\u0644\u0645\u0644\u0644\u06cc \u0627\u0633\u062a \u06a9\u0647 \u0631\u0627\u0647 \u062d\u0644 \u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0631\u0627 \u0628\u0631\u0627\u06cc \u0628\u0627\u0632\u0627\u0631\u0647\u0627\u06cc \u062c\u0647\u0627\u0646\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0635\u0646\u0639\u062a\u06cc \u0648 \u0633\u0627\u062e\u062a\u0645\u0627\u0646\u06cc \u0637\u0631\u0627\u062d\u06cc\u060c \u062a\u0648\u0644\u06cc\u062f \u0648 \u0628\u0647 \u0641\u0631\u0648\u0634 \u0645\u06cc \u0631\u0633\u0627\u0646\u062f. \u0627\u06cc\u0646 \u0634\u0631\u06a9\u062a \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0627\u0631\u0648\u067e\u0627\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627 \u0648 \u0645\u0646\u0637\u0642\u0647 \u0622\u0633\u06cc\u0627 \u0648 \u0627\u0642\u06cc\u0627\u0646\u0648\u0633\u06cc\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0634\u0628\u06a9\u0647 \u0627\u06cc \u0645\u062a\u0634\u06a9\u0644 \u0627\u0632 22 \u0634\u0631\u06a9\u062a \u062a\u062c\u0627\u0631\u06cc \u062e\u0648\u062f \u0648 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0628\u06cc\u0634 \u0627\u0632 60 \u062a\u0648\u0632\u06cc\u0639 \u06a9\u0646\u0646\u062f\u0647 \u0645\u0633\u062a\u0642\u0644 \u0645\u0644\u06cc \u0639\u0631\u0636\u0647 \u0645\u06cc \u06a9\u0646\u062f. \u0645\u0634\u06a9\u0644\u0627\u062a \u0639\u0645\u062f\u062a\u0627\u064b Carlo Gavazzi UWP3.0 \u0648 CPY Car Park Server \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f. \u0647\u0645\u0647 \u0628\u0627\u06af \u0647\u0627\u06cc \u0645\u0647\u0645 \u062f\u0627\u0631\u0627\u06cc \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 9.8 \u0647\u0633\u062a\u0646\u062f. \u0628\u0631\u062e\u06cc \u0627\u0632 \u0622\u0646\u0647\u0627 \u0628\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u0634\u062f\u0647 (CVE-2022-22522\u060c CVE-2022-28812) \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc UWP3.0 \u0648 CPY Car Park Server \u0645\u0631\u0628\u0648\u0637 \u0645\u06cc \u0634\u0648\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u063a\u06cc\u0631 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u0633\u0631\u0648\u0631 \u0648 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0628\u0631\u062e\u06cc \u062f\u06cc\u06af\u0631 \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0639\u062f\u0645 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u0633\u062a \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0627\u0632 \u0637\u0631\u06cc\u0642 API (CVE-2022-22526)\u060c \u0627\u0639\u062a\u0628\u0627\u0631 \u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u062f\u0631 \u067e\u0627\u0631\u0627\u0645\u062a\u0631 \u0627\u0631\u0633\u0627\u0644 \u0634\u062f\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 API \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 (CVE-2022-28811) \u0648 \u067e\u06cc\u0645\u0627\u06cc\u0634 \u0645\u0633\u06cc\u0631 \u0646\u0633\u0628\u06cc \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 RCE (CVE-2022-28814) \u0645\u06cc \u0634\u0648\u062f. \u0639\u0644\u0627\u0648\u0647 \u0628\u0631 \u0627\u06cc\u0646\u060c \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u062a\u0627\u06cc\u06cc\u062f \u0646\u0634\u062f\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc SQL-Injection \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647 (CVE-2022-22524) \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f\u060c \u0648 \u062f\u0631 \u0645\u0648\u0627\u0631\u062f \u062f\u06cc\u06af\u0631\u060c \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062a\u0632\u0631\u06cc\u0642 SQL \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0627\u0632 \u062f\u06cc\u06af\u0631 \u062c\u062f\u0627\u0648\u0644 \u0633\u0631\u0648\u06cc\u0633 Sentilo \u067e\u0631\u0633 \u0648 \u062c\u0648 \u06a9\u0646\u062f (CVE-2022-). 28813 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5). \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u062c\u062f\u06cc \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0627\u062f\u0631\u0633\u062a \u0627\u0633\u062a\u060c \u06a9\u0647 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u062f\u0631 \u0632\u0645\u06cc\u0646\u0647 \u06a9\u0627\u0631\u0628\u0631 (CVE-2022-22523 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5)\u060c \u0648 \u0647\u0645\u0686\u0646\u06cc\u0646 \u0627\u0639\u062a\u0628\u0627\u0631\u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a - CVE-2022-22525 (CVSS V3) \u062f\u0648\u0631 \u0632\u062f\u0647 \u0634\u0648\u062f. . \u062f\u0648\u0645\u06cc \u0628\u0647 \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0628\u0627 \u062d\u0642\u0648\u0642 \u0645\u062f\u06cc\u0631 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f \u062a\u0627 \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f. \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc UWP3.0\u060c \u067e\u0631\u0627\u06a9\u0633\u06cc Sentilo \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 XSS \u0645\u0646\u0639\u06a9\u0633 \u0634\u062f\u0647 (CVE-2022-28816 \u0628\u0627 CVSS V3 7.6) \u0642\u0631\u0627\u0631 \u0645\u06cc\u200c\u06af\u06cc\u0631\u062f. \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0628\u0627\u06cc\u062f \u0628\u0647 \u0645\u0634\u06a9\u0644\u0627\u062a \u062a\u0648\u062c\u0647 \u06a9\u0646\u0646\u062f \u0648 \u0628\u0627 \u062a\u0648\u062c\u0647 \u0628\u0647 \u0628\u062d\u0631\u0627\u0646\u06cc \u0628\u0648\u062f\u0646 \u0628\u0627\u06af \u0647\u0627\u06cc \u06cc\u0627\u0641\u062a \u0634\u062f\u0647\u060c \u062f\u0631 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0639\u062c\u0644\u0647 \u06a9\u0646\u0646\u062f.\n\n\ud83d\udc6e\u200d\u2640\ufe0f\ud83d\udc6e\u200d\u2640\ufe0f \u0628\u0627\u0632\u0646\u0634\u0631 \u0645\u0637\u0627\u0644\u0628 \u0627\u06cc\u0646 \u06a9\u0627\u0646\u0627\u0644 \u0635\u0631\u0641\u0627 \u0628\u0627 \u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u06a9\u0627\u0645\u0644 \u06a9\u0627\u0646\u0627\u0644 \u0645\u062c\u0627\u0632 \u0645\u06cc\u0628\u0627\u0634\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u062a\u0648\u06cc\u06cc\u062a\u0631:\nhttps://twitter.com/icscerti", "creation_timestamp": "2022-09-28T09:09:47.000000Z"} {"uuid": "51a276db-215c-4199-ae5d-833f69f994a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22526", "type": "seen", "source": "https://t.me/ics_cert/615", "content": "\u062a\u06cc\u0645 Claroty's Team82 \u06cc\u0627\u0632\u062f\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0627 \u062f\u0631 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u06cc IoT \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a Carlo Gavazzi \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f \u06a9\u0647 6 \u0645\u0648\u0631\u062f \u0627\u0632 \u0622\u0646\u200c\u0647\u0627 \u062d\u06cc\u0627\u062a\u06cc \u0647\u0633\u062a\u0646\u062f. \n\nCarlo Gavazzi \u06cc\u06a9 \u06af\u0631\u0648\u0647 \u0628\u06cc\u0646 \u0627\u0644\u0645\u0644\u0644\u06cc \u0627\u0633\u062a \u06a9\u0647 \u0631\u0627\u0647 \u062d\u0644 \u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0631\u0627 \u0628\u0631\u0627\u06cc \u0628\u0627\u0632\u0627\u0631\u0647\u0627\u06cc \u062c\u0647\u0627\u0646\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0635\u0646\u0639\u062a\u06cc \u0648 \u0633\u0627\u062e\u062a\u0645\u0627\u0646\u06cc \u0637\u0631\u0627\u062d\u06cc\u060c \u062a\u0648\u0644\u06cc\u062f \u0648 \u0628\u0647 \u0641\u0631\u0648\u0634 \u0645\u06cc \u0631\u0633\u0627\u0646\u062f. \u0627\u06cc\u0646 \u0634\u0631\u06a9\u062a \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0627\u0631\u0648\u067e\u0627\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627 \u0648 \u0645\u0646\u0637\u0642\u0647 \u0622\u0633\u06cc\u0627 \u0648 \u0627\u0642\u06cc\u0627\u0646\u0648\u0633\u06cc\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0634\u0628\u06a9\u0647 \u0627\u06cc \u0645\u062a\u0634\u06a9\u0644 \u0627\u0632 22 \u0634\u0631\u06a9\u062a \u062a\u062c\u0627\u0631\u06cc \u062e\u0648\u062f \u0648 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0628\u06cc\u0634 \u0627\u0632 60 \u062a\u0648\u0632\u06cc\u0639 \u06a9\u0646\u0646\u062f\u0647 \u0645\u0633\u062a\u0642\u0644 \u0645\u0644\u06cc \u0639\u0631\u0636\u0647 \u0645\u06cc \u06a9\u0646\u062f. \u0645\u0634\u06a9\u0644\u0627\u062a \u0639\u0645\u062f\u062a\u0627\u064b Carlo Gavazzi UWP3.0 \u0648 CPY Car Park Server \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f. \u0647\u0645\u0647 \u0628\u0627\u06af \u0647\u0627\u06cc \u0645\u0647\u0645 \u062f\u0627\u0631\u0627\u06cc \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 9.8 \u0647\u0633\u062a\u0646\u062f. \u0628\u0631\u062e\u06cc \u0627\u0632 \u0622\u0646\u0647\u0627 \u0628\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u0634\u062f\u0647 (CVE-2022-22522\u060c CVE-2022-28812) \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc UWP3.0 \u0648 CPY Car Park Server \u0645\u0631\u0628\u0648\u0637 \u0645\u06cc \u0634\u0648\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u063a\u06cc\u0631 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u0633\u0631\u0648\u0631 \u0648 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0628\u0631\u062e\u06cc \u062f\u06cc\u06af\u0631 \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0639\u062f\u0645 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u0633\u062a \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0627\u0632 \u0637\u0631\u06cc\u0642 API (CVE-2022-22526)\u060c \u0627\u0639\u062a\u0628\u0627\u0631 \u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u062f\u0631 \u067e\u0627\u0631\u0627\u0645\u062a\u0631 \u0627\u0631\u0633\u0627\u0644 \u0634\u062f\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 API \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 (CVE-2022-28811) \u0648 \u067e\u06cc\u0645\u0627\u06cc\u0634 \u0645\u0633\u06cc\u0631 \u0646\u0633\u0628\u06cc \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 RCE (CVE-2022-28814) \u0645\u06cc \u0634\u0648\u062f. \u0639\u0644\u0627\u0648\u0647 \u0628\u0631 \u0627\u06cc\u0646\u060c \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u062a\u0627\u06cc\u06cc\u062f \u0646\u0634\u062f\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc SQL-Injection \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647 (CVE-2022-22524) \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f\u060c \u0648 \u062f\u0631 \u0645\u0648\u0627\u0631\u062f \u062f\u06cc\u06af\u0631\u060c \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062a\u0632\u0631\u06cc\u0642 SQL \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0627\u0632 \u062f\u06cc\u06af\u0631 \u062c\u062f\u0627\u0648\u0644 \u0633\u0631\u0648\u06cc\u0633 Sentilo \u067e\u0631\u0633 \u0648 \u062c\u0648 \u06a9\u0646\u062f (CVE-2022-). 28813 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5). \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u062c\u062f\u06cc \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0627\u062f\u0631\u0633\u062a \u0627\u0633\u062a\u060c \u06a9\u0647 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u062f\u0631 \u0632\u0645\u06cc\u0646\u0647 \u06a9\u0627\u0631\u0628\u0631 (CVE-2022-22523 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5)\u060c \u0648 \u0647\u0645\u0686\u0646\u06cc\u0646 \u0627\u0639\u062a\u0628\u0627\u0631\u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a - CVE-2022-22525 (CVSS V3) \u062f\u0648\u0631 \u0632\u062f\u0647 \u0634\u0648\u062f. . \u062f\u0648\u0645\u06cc \u0628\u0647 \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0628\u0627 \u062d\u0642\u0648\u0642 \u0645\u062f\u06cc\u0631 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f \u062a\u0627 \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f. \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc UWP3.0\u060c \u067e\u0631\u0627\u06a9\u0633\u06cc Sentilo \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 XSS \u0645\u0646\u0639\u06a9\u0633 \u0634\u062f\u0647 (CVE-2022-28816 \u0628\u0627 CVSS V3 7.6) \u0642\u0631\u0627\u0631 \u0645\u06cc\u200c\u06af\u06cc\u0631\u062f. \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0628\u0627\u06cc\u062f \u0628\u0647 \u0645\u0634\u06a9\u0644\u0627\u062a \u062a\u0648\u062c\u0647 \u06a9\u0646\u0646\u062f \u0648 \u0628\u0627 \u062a\u0648\u062c\u0647 \u0628\u0647 \u0628\u062d\u0631\u0627\u0646\u06cc \u0628\u0648\u062f\u0646 \u0628\u0627\u06af \u0647\u0627\u06cc \u06cc\u0627\u0641\u062a \u0634\u062f\u0647\u060c \u062f\u0631 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0639\u062c\u0644\u0647 \u06a9\u0646\u0646\u062f.\n\n\ud83d\udc6e\u200d\u2640\ufe0f\ud83d\udc6e\u200d\u2640\ufe0f \u0628\u0627\u0632\u0646\u0634\u0631 \u0645\u0637\u0627\u0644\u0628 \u0627\u06cc\u0646 \u06a9\u0627\u0646\u0627\u0644 \u0635\u0631\u0641\u0627 \u0628\u0627 \u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u06a9\u0627\u0645\u0644 \u06a9\u0627\u0646\u0627\u0644 \u0645\u062c\u0627\u0632 \u0645\u06cc\u0628\u0627\u0634\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u062a\u0648\u06cc\u06cc\u062a\u0631:\nhttps://twitter.com/icscerti", "creation_timestamp": "2022-09-28T09:09:47.000000Z"} https://db.gcve.eu/sighting/51a276db-215c-4199-ae5d-833f69f994a5/export Wed, 28 Sep 2022 09:09:47 +0000 https://db.gcve.eu/sighting/1764eca5-e8eb-4a29-9059-85dff432c143/export {"uuid": "1764eca5-e8eb-4a29-9059-85dff432c143", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22524", "type": "seen", "source": "https://t.me/ics_cert/615", "content": "\u062a\u06cc\u0645 Claroty's Team82 \u06cc\u0627\u0632\u062f\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0627 \u062f\u0631 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u06cc IoT \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a Carlo Gavazzi \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f \u06a9\u0647 6 \u0645\u0648\u0631\u062f \u0627\u0632 \u0622\u0646\u200c\u0647\u0627 \u062d\u06cc\u0627\u062a\u06cc \u0647\u0633\u062a\u0646\u062f. \n\nCarlo Gavazzi \u06cc\u06a9 \u06af\u0631\u0648\u0647 \u0628\u06cc\u0646 \u0627\u0644\u0645\u0644\u0644\u06cc \u0627\u0633\u062a \u06a9\u0647 \u0631\u0627\u0647 \u062d\u0644 \u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0631\u0627 \u0628\u0631\u0627\u06cc \u0628\u0627\u0632\u0627\u0631\u0647\u0627\u06cc \u062c\u0647\u0627\u0646\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0635\u0646\u0639\u062a\u06cc \u0648 \u0633\u0627\u062e\u062a\u0645\u0627\u0646\u06cc \u0637\u0631\u0627\u062d\u06cc\u060c \u062a\u0648\u0644\u06cc\u062f \u0648 \u0628\u0647 \u0641\u0631\u0648\u0634 \u0645\u06cc \u0631\u0633\u0627\u0646\u062f. \u0627\u06cc\u0646 \u0634\u0631\u06a9\u062a \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0627\u0631\u0648\u067e\u0627\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627 \u0648 \u0645\u0646\u0637\u0642\u0647 \u0622\u0633\u06cc\u0627 \u0648 \u0627\u0642\u06cc\u0627\u0646\u0648\u0633\u06cc\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0634\u0628\u06a9\u0647 \u0627\u06cc \u0645\u062a\u0634\u06a9\u0644 \u0627\u0632 22 \u0634\u0631\u06a9\u062a \u062a\u062c\u0627\u0631\u06cc \u062e\u0648\u062f \u0648 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0628\u06cc\u0634 \u0627\u0632 60 \u062a\u0648\u0632\u06cc\u0639 \u06a9\u0646\u0646\u062f\u0647 \u0645\u0633\u062a\u0642\u0644 \u0645\u0644\u06cc \u0639\u0631\u0636\u0647 \u0645\u06cc \u06a9\u0646\u062f. \u0645\u0634\u06a9\u0644\u0627\u062a \u0639\u0645\u062f\u062a\u0627\u064b Carlo Gavazzi UWP3.0 \u0648 CPY Car Park Server \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f. \u0647\u0645\u0647 \u0628\u0627\u06af \u0647\u0627\u06cc \u0645\u0647\u0645 \u062f\u0627\u0631\u0627\u06cc \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 9.8 \u0647\u0633\u062a\u0646\u062f. \u0628\u0631\u062e\u06cc \u0627\u0632 \u0622\u0646\u0647\u0627 \u0628\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u0634\u062f\u0647 (CVE-2022-22522\u060c CVE-2022-28812) \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc UWP3.0 \u0648 CPY Car Park Server \u0645\u0631\u0628\u0648\u0637 \u0645\u06cc \u0634\u0648\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u063a\u06cc\u0631 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u0633\u0631\u0648\u0631 \u0648 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0628\u0631\u062e\u06cc \u062f\u06cc\u06af\u0631 \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0639\u062f\u0645 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u0633\u062a \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0627\u0632 \u0637\u0631\u06cc\u0642 API (CVE-2022-22526)\u060c \u0627\u0639\u062a\u0628\u0627\u0631 \u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u062f\u0631 \u067e\u0627\u0631\u0627\u0645\u062a\u0631 \u0627\u0631\u0633\u0627\u0644 \u0634\u062f\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 API \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 (CVE-2022-28811) \u0648 \u067e\u06cc\u0645\u0627\u06cc\u0634 \u0645\u0633\u06cc\u0631 \u0646\u0633\u0628\u06cc \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 RCE (CVE-2022-28814) \u0645\u06cc \u0634\u0648\u062f. \u0639\u0644\u0627\u0648\u0647 \u0628\u0631 \u0627\u06cc\u0646\u060c \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u062a\u0627\u06cc\u06cc\u062f \u0646\u0634\u062f\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc SQL-Injection \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647 (CVE-2022-22524) \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f\u060c \u0648 \u062f\u0631 \u0645\u0648\u0627\u0631\u062f \u062f\u06cc\u06af\u0631\u060c \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062a\u0632\u0631\u06cc\u0642 SQL \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0627\u0632 \u062f\u06cc\u06af\u0631 \u062c\u062f\u0627\u0648\u0644 \u0633\u0631\u0648\u06cc\u0633 Sentilo \u067e\u0631\u0633 \u0648 \u062c\u0648 \u06a9\u0646\u062f (CVE-2022-). 28813 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5). \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u062c\u062f\u06cc \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0627\u062f\u0631\u0633\u062a \u0627\u0633\u062a\u060c \u06a9\u0647 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u062f\u0631 \u0632\u0645\u06cc\u0646\u0647 \u06a9\u0627\u0631\u0628\u0631 (CVE-2022-22523 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5)\u060c \u0648 \u0647\u0645\u0686\u0646\u06cc\u0646 \u0627\u0639\u062a\u0628\u0627\u0631\u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a - CVE-2022-22525 (CVSS V3) \u062f\u0648\u0631 \u0632\u062f\u0647 \u0634\u0648\u062f. . \u062f\u0648\u0645\u06cc \u0628\u0647 \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0628\u0627 \u062d\u0642\u0648\u0642 \u0645\u062f\u06cc\u0631 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f \u062a\u0627 \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f. \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc UWP3.0\u060c \u067e\u0631\u0627\u06a9\u0633\u06cc Sentilo \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 XSS \u0645\u0646\u0639\u06a9\u0633 \u0634\u062f\u0647 (CVE-2022-28816 \u0628\u0627 CVSS V3 7.6) \u0642\u0631\u0627\u0631 \u0645\u06cc\u200c\u06af\u06cc\u0631\u062f. \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0628\u0627\u06cc\u062f \u0628\u0647 \u0645\u0634\u06a9\u0644\u0627\u062a \u062a\u0648\u062c\u0647 \u06a9\u0646\u0646\u062f \u0648 \u0628\u0627 \u062a\u0648\u062c\u0647 \u0628\u0647 \u0628\u062d\u0631\u0627\u0646\u06cc \u0628\u0648\u062f\u0646 \u0628\u0627\u06af \u0647\u0627\u06cc \u06cc\u0627\u0641\u062a \u0634\u062f\u0647\u060c \u062f\u0631 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0639\u062c\u0644\u0647 \u06a9\u0646\u0646\u062f.\n\n\ud83d\udc6e\u200d\u2640\ufe0f\ud83d\udc6e\u200d\u2640\ufe0f \u0628\u0627\u0632\u0646\u0634\u0631 \u0645\u0637\u0627\u0644\u0628 \u0627\u06cc\u0646 \u06a9\u0627\u0646\u0627\u0644 \u0635\u0631\u0641\u0627 \u0628\u0627 \u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u06a9\u0627\u0645\u0644 \u06a9\u0627\u0646\u0627\u0644 \u0645\u062c\u0627\u0632 \u0645\u06cc\u0628\u0627\u0634\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u062a\u0648\u06cc\u06cc\u062a\u0631:\nhttps://twitter.com/icscerti", "creation_timestamp": "2022-09-28T09:09:47.000000Z"} {"uuid": "1764eca5-e8eb-4a29-9059-85dff432c143", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22524", "type": "seen", "source": "https://t.me/ics_cert/615", "content": "\u062a\u06cc\u0645 Claroty's Team82 \u06cc\u0627\u0632\u062f\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0627 \u062f\u0631 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u06cc IoT \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a Carlo Gavazzi \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f \u06a9\u0647 6 \u0645\u0648\u0631\u062f \u0627\u0632 \u0622\u0646\u200c\u0647\u0627 \u062d\u06cc\u0627\u062a\u06cc \u0647\u0633\u062a\u0646\u062f. \n\nCarlo Gavazzi \u06cc\u06a9 \u06af\u0631\u0648\u0647 \u0628\u06cc\u0646 \u0627\u0644\u0645\u0644\u0644\u06cc \u0627\u0633\u062a \u06a9\u0647 \u0631\u0627\u0647 \u062d\u0644 \u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0631\u0627 \u0628\u0631\u0627\u06cc \u0628\u0627\u0632\u0627\u0631\u0647\u0627\u06cc \u062c\u0647\u0627\u0646\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0635\u0646\u0639\u062a\u06cc \u0648 \u0633\u0627\u062e\u062a\u0645\u0627\u0646\u06cc \u0637\u0631\u0627\u062d\u06cc\u060c \u062a\u0648\u0644\u06cc\u062f \u0648 \u0628\u0647 \u0641\u0631\u0648\u0634 \u0645\u06cc \u0631\u0633\u0627\u0646\u062f. \u0627\u06cc\u0646 \u0634\u0631\u06a9\u062a \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0627\u0631\u0648\u067e\u0627\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627 \u0648 \u0645\u0646\u0637\u0642\u0647 \u0622\u0633\u06cc\u0627 \u0648 \u0627\u0642\u06cc\u0627\u0646\u0648\u0633\u06cc\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0634\u0628\u06a9\u0647 \u0627\u06cc \u0645\u062a\u0634\u06a9\u0644 \u0627\u0632 22 \u0634\u0631\u06a9\u062a \u062a\u062c\u0627\u0631\u06cc \u062e\u0648\u062f \u0648 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0628\u06cc\u0634 \u0627\u0632 60 \u062a\u0648\u0632\u06cc\u0639 \u06a9\u0646\u0646\u062f\u0647 \u0645\u0633\u062a\u0642\u0644 \u0645\u0644\u06cc \u0639\u0631\u0636\u0647 \u0645\u06cc \u06a9\u0646\u062f. \u0645\u0634\u06a9\u0644\u0627\u062a \u0639\u0645\u062f\u062a\u0627\u064b Carlo Gavazzi UWP3.0 \u0648 CPY Car Park Server \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f. \u0647\u0645\u0647 \u0628\u0627\u06af \u0647\u0627\u06cc \u0645\u0647\u0645 \u062f\u0627\u0631\u0627\u06cc \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 9.8 \u0647\u0633\u062a\u0646\u062f. \u0628\u0631\u062e\u06cc \u0627\u0632 \u0622\u0646\u0647\u0627 \u0628\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u0634\u062f\u0647 (CVE-2022-22522\u060c CVE-2022-28812) \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc UWP3.0 \u0648 CPY Car Park Server \u0645\u0631\u0628\u0648\u0637 \u0645\u06cc \u0634\u0648\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u063a\u06cc\u0631 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u0633\u0631\u0648\u0631 \u0648 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0628\u0631\u062e\u06cc \u062f\u06cc\u06af\u0631 \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0639\u062f\u0645 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u0633\u062a \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0627\u0632 \u0637\u0631\u06cc\u0642 API (CVE-2022-22526)\u060c \u0627\u0639\u062a\u0628\u0627\u0631 \u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u062f\u0631 \u067e\u0627\u0631\u0627\u0645\u062a\u0631 \u0627\u0631\u0633\u0627\u0644 \u0634\u062f\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 API \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 (CVE-2022-28811) \u0648 \u067e\u06cc\u0645\u0627\u06cc\u0634 \u0645\u0633\u06cc\u0631 \u0646\u0633\u0628\u06cc \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 RCE (CVE-2022-28814) \u0645\u06cc \u0634\u0648\u062f. \u0639\u0644\u0627\u0648\u0647 \u0628\u0631 \u0627\u06cc\u0646\u060c \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u062a\u0627\u06cc\u06cc\u062f \u0646\u0634\u062f\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc SQL-Injection \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647 (CVE-2022-22524) \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f\u060c \u0648 \u062f\u0631 \u0645\u0648\u0627\u0631\u062f \u062f\u06cc\u06af\u0631\u060c \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062a\u0632\u0631\u06cc\u0642 SQL \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0627\u0632 \u062f\u06cc\u06af\u0631 \u062c\u062f\u0627\u0648\u0644 \u0633\u0631\u0648\u06cc\u0633 Sentilo \u067e\u0631\u0633 \u0648 \u062c\u0648 \u06a9\u0646\u062f (CVE-2022-). 28813 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5). \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u062c\u062f\u06cc \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0627\u062f\u0631\u0633\u062a \u0627\u0633\u062a\u060c \u06a9\u0647 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u062f\u0631 \u0632\u0645\u06cc\u0646\u0647 \u06a9\u0627\u0631\u0628\u0631 (CVE-2022-22523 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5)\u060c \u0648 \u0647\u0645\u0686\u0646\u06cc\u0646 \u0627\u0639\u062a\u0628\u0627\u0631\u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a - CVE-2022-22525 (CVSS V3) \u062f\u0648\u0631 \u0632\u062f\u0647 \u0634\u0648\u062f. . \u062f\u0648\u0645\u06cc \u0628\u0647 \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0628\u0627 \u062d\u0642\u0648\u0642 \u0645\u062f\u06cc\u0631 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f \u062a\u0627 \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f. \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc UWP3.0\u060c \u067e\u0631\u0627\u06a9\u0633\u06cc Sentilo \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 XSS \u0645\u0646\u0639\u06a9\u0633 \u0634\u062f\u0647 (CVE-2022-28816 \u0628\u0627 CVSS V3 7.6) \u0642\u0631\u0627\u0631 \u0645\u06cc\u200c\u06af\u06cc\u0631\u062f. \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0628\u0627\u06cc\u062f \u0628\u0647 \u0645\u0634\u06a9\u0644\u0627\u062a \u062a\u0648\u062c\u0647 \u06a9\u0646\u0646\u062f \u0648 \u0628\u0627 \u062a\u0648\u062c\u0647 \u0628\u0647 \u0628\u062d\u0631\u0627\u0646\u06cc \u0628\u0648\u062f\u0646 \u0628\u0627\u06af \u0647\u0627\u06cc \u06cc\u0627\u0641\u062a \u0634\u062f\u0647\u060c \u062f\u0631 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0639\u062c\u0644\u0647 \u06a9\u0646\u0646\u062f.\n\n\ud83d\udc6e\u200d\u2640\ufe0f\ud83d\udc6e\u200d\u2640\ufe0f \u0628\u0627\u0632\u0646\u0634\u0631 \u0645\u0637\u0627\u0644\u0628 \u0627\u06cc\u0646 \u06a9\u0627\u0646\u0627\u0644 \u0635\u0631\u0641\u0627 \u0628\u0627 \u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u06a9\u0627\u0645\u0644 \u06a9\u0627\u0646\u0627\u0644 \u0645\u062c\u0627\u0632 \u0645\u06cc\u0628\u0627\u0634\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u062a\u0648\u06cc\u06cc\u062a\u0631:\nhttps://twitter.com/icscerti", "creation_timestamp": "2022-09-28T09:09:47.000000Z"} https://db.gcve.eu/sighting/1764eca5-e8eb-4a29-9059-85dff432c143/export Wed, 28 Sep 2022 09:09:47 +0000 https://db.gcve.eu/sighting/1b3b3300-6ba8-448a-a8c7-6b17835f6ba5/export {"uuid": "1b3b3300-6ba8-448a-a8c7-6b17835f6ba5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22522", "type": "seen", "source": "https://t.me/ics_cert/615", "content": "\u062a\u06cc\u0645 Claroty's Team82 \u06cc\u0627\u0632\u062f\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0627 \u062f\u0631 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u06cc IoT \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a Carlo Gavazzi \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f \u06a9\u0647 6 \u0645\u0648\u0631\u062f \u0627\u0632 \u0622\u0646\u200c\u0647\u0627 \u062d\u06cc\u0627\u062a\u06cc \u0647\u0633\u062a\u0646\u062f. \n\nCarlo Gavazzi \u06cc\u06a9 \u06af\u0631\u0648\u0647 \u0628\u06cc\u0646 \u0627\u0644\u0645\u0644\u0644\u06cc \u0627\u0633\u062a \u06a9\u0647 \u0631\u0627\u0647 \u062d\u0644 \u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0631\u0627 \u0628\u0631\u0627\u06cc \u0628\u0627\u0632\u0627\u0631\u0647\u0627\u06cc \u062c\u0647\u0627\u0646\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0635\u0646\u0639\u062a\u06cc \u0648 \u0633\u0627\u062e\u062a\u0645\u0627\u0646\u06cc \u0637\u0631\u0627\u062d\u06cc\u060c \u062a\u0648\u0644\u06cc\u062f \u0648 \u0628\u0647 \u0641\u0631\u0648\u0634 \u0645\u06cc \u0631\u0633\u0627\u0646\u062f. \u0627\u06cc\u0646 \u0634\u0631\u06a9\u062a \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0627\u0631\u0648\u067e\u0627\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627 \u0648 \u0645\u0646\u0637\u0642\u0647 \u0622\u0633\u06cc\u0627 \u0648 \u0627\u0642\u06cc\u0627\u0646\u0648\u0633\u06cc\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0634\u0628\u06a9\u0647 \u0627\u06cc \u0645\u062a\u0634\u06a9\u0644 \u0627\u0632 22 \u0634\u0631\u06a9\u062a \u062a\u062c\u0627\u0631\u06cc \u062e\u0648\u062f \u0648 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0628\u06cc\u0634 \u0627\u0632 60 \u062a\u0648\u0632\u06cc\u0639 \u06a9\u0646\u0646\u062f\u0647 \u0645\u0633\u062a\u0642\u0644 \u0645\u0644\u06cc \u0639\u0631\u0636\u0647 \u0645\u06cc \u06a9\u0646\u062f. \u0645\u0634\u06a9\u0644\u0627\u062a \u0639\u0645\u062f\u062a\u0627\u064b Carlo Gavazzi UWP3.0 \u0648 CPY Car Park Server \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f. \u0647\u0645\u0647 \u0628\u0627\u06af \u0647\u0627\u06cc \u0645\u0647\u0645 \u062f\u0627\u0631\u0627\u06cc \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 9.8 \u0647\u0633\u062a\u0646\u062f. \u0628\u0631\u062e\u06cc \u0627\u0632 \u0622\u0646\u0647\u0627 \u0628\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u0634\u062f\u0647 (CVE-2022-22522\u060c CVE-2022-28812) \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc UWP3.0 \u0648 CPY Car Park Server \u0645\u0631\u0628\u0648\u0637 \u0645\u06cc \u0634\u0648\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u063a\u06cc\u0631 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u0633\u0631\u0648\u0631 \u0648 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0628\u0631\u062e\u06cc \u062f\u06cc\u06af\u0631 \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0639\u062f\u0645 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u0633\u062a \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0627\u0632 \u0637\u0631\u06cc\u0642 API (CVE-2022-22526)\u060c \u0627\u0639\u062a\u0628\u0627\u0631 \u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u062f\u0631 \u067e\u0627\u0631\u0627\u0645\u062a\u0631 \u0627\u0631\u0633\u0627\u0644 \u0634\u062f\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 API \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 (CVE-2022-28811) \u0648 \u067e\u06cc\u0645\u0627\u06cc\u0634 \u0645\u0633\u06cc\u0631 \u0646\u0633\u0628\u06cc \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 RCE (CVE-2022-28814) \u0645\u06cc \u0634\u0648\u062f. \u0639\u0644\u0627\u0648\u0647 \u0628\u0631 \u0627\u06cc\u0646\u060c \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u062a\u0627\u06cc\u06cc\u062f \u0646\u0634\u062f\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc SQL-Injection \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647 (CVE-2022-22524) \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f\u060c \u0648 \u062f\u0631 \u0645\u0648\u0627\u0631\u062f \u062f\u06cc\u06af\u0631\u060c \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062a\u0632\u0631\u06cc\u0642 SQL \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0627\u0632 \u062f\u06cc\u06af\u0631 \u062c\u062f\u0627\u0648\u0644 \u0633\u0631\u0648\u06cc\u0633 Sentilo \u067e\u0631\u0633 \u0648 \u062c\u0648 \u06a9\u0646\u062f (CVE-2022-). 28813 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5). \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u062c\u062f\u06cc \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0627\u062f\u0631\u0633\u062a \u0627\u0633\u062a\u060c \u06a9\u0647 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u062f\u0631 \u0632\u0645\u06cc\u0646\u0647 \u06a9\u0627\u0631\u0628\u0631 (CVE-2022-22523 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5)\u060c \u0648 \u0647\u0645\u0686\u0646\u06cc\u0646 \u0627\u0639\u062a\u0628\u0627\u0631\u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a - CVE-2022-22525 (CVSS V3) \u062f\u0648\u0631 \u0632\u062f\u0647 \u0634\u0648\u062f. . \u062f\u0648\u0645\u06cc \u0628\u0647 \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0628\u0627 \u062d\u0642\u0648\u0642 \u0645\u062f\u06cc\u0631 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f \u062a\u0627 \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f. \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc UWP3.0\u060c \u067e\u0631\u0627\u06a9\u0633\u06cc Sentilo \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 XSS \u0645\u0646\u0639\u06a9\u0633 \u0634\u062f\u0647 (CVE-2022-28816 \u0628\u0627 CVSS V3 7.6) \u0642\u0631\u0627\u0631 \u0645\u06cc\u200c\u06af\u06cc\u0631\u062f. \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0628\u0627\u06cc\u062f \u0628\u0647 \u0645\u0634\u06a9\u0644\u0627\u062a \u062a\u0648\u062c\u0647 \u06a9\u0646\u0646\u062f \u0648 \u0628\u0627 \u062a\u0648\u062c\u0647 \u0628\u0647 \u0628\u062d\u0631\u0627\u0646\u06cc \u0628\u0648\u062f\u0646 \u0628\u0627\u06af \u0647\u0627\u06cc \u06cc\u0627\u0641\u062a \u0634\u062f\u0647\u060c \u062f\u0631 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0639\u062c\u0644\u0647 \u06a9\u0646\u0646\u062f.\n\n\ud83d\udc6e\u200d\u2640\ufe0f\ud83d\udc6e\u200d\u2640\ufe0f \u0628\u0627\u0632\u0646\u0634\u0631 \u0645\u0637\u0627\u0644\u0628 \u0627\u06cc\u0646 \u06a9\u0627\u0646\u0627\u0644 \u0635\u0631\u0641\u0627 \u0628\u0627 \u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u06a9\u0627\u0645\u0644 \u06a9\u0627\u0646\u0627\u0644 \u0645\u062c\u0627\u0632 \u0645\u06cc\u0628\u0627\u0634\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u062a\u0648\u06cc\u06cc\u062a\u0631:\nhttps://twitter.com/icscerti", "creation_timestamp": "2022-09-28T09:09:47.000000Z"} {"uuid": "1b3b3300-6ba8-448a-a8c7-6b17835f6ba5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22522", "type": "seen", "source": "https://t.me/ics_cert/615", "content": "\u062a\u06cc\u0645 Claroty's Team82 \u06cc\u0627\u0632\u062f\u0647 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0627 \u062f\u0631 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u06cc IoT \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a Carlo Gavazzi \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f \u06a9\u0647 6 \u0645\u0648\u0631\u062f \u0627\u0632 \u0622\u0646\u200c\u0647\u0627 \u062d\u06cc\u0627\u062a\u06cc \u0647\u0633\u062a\u0646\u062f. \n\nCarlo Gavazzi \u06cc\u06a9 \u06af\u0631\u0648\u0647 \u0628\u06cc\u0646 \u0627\u0644\u0645\u0644\u0644\u06cc \u0627\u0633\u062a \u06a9\u0647 \u0631\u0627\u0647 \u062d\u0644 \u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0631\u0627 \u0628\u0631\u0627\u06cc \u0628\u0627\u0632\u0627\u0631\u0647\u0627\u06cc \u062c\u0647\u0627\u0646\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0635\u0646\u0639\u062a\u06cc \u0648 \u0633\u0627\u062e\u062a\u0645\u0627\u0646\u06cc \u0637\u0631\u0627\u062d\u06cc\u060c \u062a\u0648\u0644\u06cc\u062f \u0648 \u0628\u0647 \u0641\u0631\u0648\u0634 \u0645\u06cc \u0631\u0633\u0627\u0646\u062f. \u0627\u06cc\u0646 \u0634\u0631\u06a9\u062a \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0627\u0631\u0648\u067e\u0627\u060c \u0622\u0645\u0631\u06cc\u06a9\u0627 \u0648 \u0645\u0646\u0637\u0642\u0647 \u0622\u0633\u06cc\u0627 \u0648 \u0627\u0642\u06cc\u0627\u0646\u0648\u0633\u06cc\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0634\u0628\u06a9\u0647 \u0627\u06cc \u0645\u062a\u0634\u06a9\u0644 \u0627\u0632 22 \u0634\u0631\u06a9\u062a \u062a\u062c\u0627\u0631\u06cc \u062e\u0648\u062f \u0648 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0628\u06cc\u0634 \u0627\u0632 60 \u062a\u0648\u0632\u06cc\u0639 \u06a9\u0646\u0646\u062f\u0647 \u0645\u0633\u062a\u0642\u0644 \u0645\u0644\u06cc \u0639\u0631\u0636\u0647 \u0645\u06cc \u06a9\u0646\u062f. \u0645\u0634\u06a9\u0644\u0627\u062a \u0639\u0645\u062f\u062a\u0627\u064b Carlo Gavazzi UWP3.0 \u0648 CPY Car Park Server \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f. \u0647\u0645\u0647 \u0628\u0627\u06af \u0647\u0627\u06cc \u0645\u0647\u0645 \u062f\u0627\u0631\u0627\u06cc \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 9.8 \u0647\u0633\u062a\u0646\u062f. \u0628\u0631\u062e\u06cc \u0627\u0632 \u0622\u0646\u0647\u0627 \u0628\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u0634\u062f\u0647 (CVE-2022-22522\u060c CVE-2022-28812) \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc UWP3.0 \u0648 CPY Car Park Server \u0645\u0631\u0628\u0648\u0637 \u0645\u06cc \u0634\u0648\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u063a\u06cc\u0631 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u0633\u0631\u0648\u0631 \u0648 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0628\u0631\u062e\u06cc \u062f\u06cc\u06af\u0631 \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0639\u062f\u0645 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u0633\u062a \u06a9\u0647 \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0627\u0632 \u0637\u0631\u06cc\u0642 API (CVE-2022-22526)\u060c \u0627\u0639\u062a\u0628\u0627\u0631 \u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u062f\u0631 \u067e\u0627\u0631\u0627\u0645\u062a\u0631 \u0627\u0631\u0633\u0627\u0644 \u0634\u062f\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 API \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0645\u062d\u0635\u0648\u0644\u0627\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 (CVE-2022-28811) \u0648 \u067e\u06cc\u0645\u0627\u06cc\u0634 \u0645\u0633\u06cc\u0631 \u0646\u0633\u0628\u06cc \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 RCE (CVE-2022-28814) \u0645\u06cc \u0634\u0648\u062f. \u0639\u0644\u0627\u0648\u0647 \u0628\u0631 \u0627\u06cc\u0646\u060c \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u062a\u0627\u06cc\u06cc\u062f \u0646\u0634\u062f\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc SQL-Injection \u0628\u0631\u0627\u06cc \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0647 \u067e\u0627\u06cc\u06af\u0627\u0647 \u062f\u0627\u062f\u0647 (CVE-2022-22524) \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f\u060c \u0648 \u062f\u0631 \u0645\u0648\u0627\u0631\u062f \u062f\u06cc\u06af\u0631\u060c \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062a\u0632\u0631\u06cc\u0642 SQL \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0627\u0632 \u062f\u06cc\u06af\u0631 \u062c\u062f\u0627\u0648\u0644 \u0633\u0631\u0648\u06cc\u0633 Sentilo \u067e\u0631\u0633 \u0648 \u062c\u0648 \u06a9\u0646\u062f (CVE-2022-). 28813 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5). \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u062c\u062f\u06cc \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0646\u0627\u062f\u0631\u0633\u062a \u0627\u0633\u062a\u060c \u06a9\u0647 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u062f\u0631 \u0632\u0645\u06cc\u0646\u0647 \u06a9\u0627\u0631\u0628\u0631 (CVE-2022-22523 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS V3 7.5)\u060c \u0648 \u0647\u0645\u0686\u0646\u06cc\u0646 \u0627\u0639\u062a\u0628\u0627\u0631\u0633\u0646\u062c\u06cc \u0648\u0631\u0648\u062f\u06cc \u0646\u0627\u062f\u0631\u0633\u062a - CVE-2022-22525 (CVSS V3) \u062f\u0648\u0631 \u0632\u062f\u0647 \u0634\u0648\u062f. . \u062f\u0648\u0645\u06cc \u0628\u0647 \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0628\u0627 \u062d\u0642\u0648\u0642 \u0645\u062f\u06cc\u0631 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc \u062f\u0647\u062f \u062a\u0627 \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f. \u062f\u0631 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc UWP3.0\u060c \u067e\u0631\u0627\u06a9\u0633\u06cc Sentilo \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 XSS \u0645\u0646\u0639\u06a9\u0633 \u0634\u062f\u0647 (CVE-2022-28816 \u0628\u0627 CVSS V3 7.6) \u0642\u0631\u0627\u0631 \u0645\u06cc\u200c\u06af\u06cc\u0631\u062f. \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0628\u0627\u06cc\u062f \u0628\u0647 \u0645\u0634\u06a9\u0644\u0627\u062a \u062a\u0648\u062c\u0647 \u06a9\u0646\u0646\u062f \u0648 \u0628\u0627 \u062a\u0648\u062c\u0647 \u0628\u0647 \u0628\u062d\u0631\u0627\u0646\u06cc \u0628\u0648\u062f\u0646 \u0628\u0627\u06af \u0647\u0627\u06cc \u06cc\u0627\u0641\u062a \u0634\u062f\u0647\u060c \u062f\u0631 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0639\u062c\u0644\u0647 \u06a9\u0646\u0646\u062f.\n\n\ud83d\udc6e\u200d\u2640\ufe0f\ud83d\udc6e\u200d\u2640\ufe0f \u0628\u0627\u0632\u0646\u0634\u0631 \u0645\u0637\u0627\u0644\u0628 \u0627\u06cc\u0646 \u06a9\u0627\u0646\u0627\u0644 \u0635\u0631\u0641\u0627 \u0628\u0627 \u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u06a9\u0627\u0645\u0644 \u06a9\u0627\u0646\u0627\u0644 \u0645\u062c\u0627\u0632 \u0645\u06cc\u0628\u0627\u0634\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u062a\u0648\u06cc\u06cc\u062a\u0631:\nhttps://twitter.com/icscerti", "creation_timestamp": "2022-09-28T09:09:47.000000Z"} https://db.gcve.eu/sighting/1b3b3300-6ba8-448a-a8c7-6b17835f6ba5/export Wed, 28 Sep 2022 09:09:47 +0000 https://db.gcve.eu/sighting/9d804a00-9d66-4c72-964e-9cd41f41b1ba/export {"uuid": "9d804a00-9d66-4c72-964e-9cd41f41b1ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22524", "type": "seen", "source": "https://t.me/cibsecurity/50584", "content": "\u203c CVE-2022-22524 \u203c\n\nIn Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an unauthenticated remote attacker could utilize a SQL-Injection vulnerability to gain full database access, modify users and stop services .\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-28T18:34:13.000000Z"} {"uuid": "9d804a00-9d66-4c72-964e-9cd41f41b1ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22524", "type": "seen", "source": "https://t.me/cibsecurity/50584", "content": "\u203c CVE-2022-22524 \u203c\n\nIn Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an unauthenticated remote attacker could utilize a SQL-Injection vulnerability to gain full database access, modify users and stop services .\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-28T18:34:13.000000Z"} https://db.gcve.eu/sighting/9d804a00-9d66-4c72-964e-9cd41f41b1ba/export Wed, 28 Sep 2022 18:34:13 +0000 https://db.gcve.eu/sighting/29fa1a45-775a-4f89-80b9-2b82684d20e8/export {"uuid": "29fa1a45-775a-4f89-80b9-2b82684d20e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22522", "type": "seen", "source": "https://t.me/cibsecurity/50585", "content": "\u203c CVE-2022-22522 \u203c\n\nIn Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain full access to the device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-28T18:34:14.000000Z"} {"uuid": "29fa1a45-775a-4f89-80b9-2b82684d20e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22522", "type": "seen", "source": "https://t.me/cibsecurity/50585", "content": "\u203c CVE-2022-22522 \u203c\n\nIn Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of hard-coded credentials to gain full access to the device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-28T18:34:14.000000Z"} https://db.gcve.eu/sighting/29fa1a45-775a-4f89-80b9-2b82684d20e8/export Wed, 28 Sep 2022 18:34:14 +0000 https://db.gcve.eu/sighting/a815ae9e-065a-49fb-8d02-9332a98a8f32/export {"uuid": "a815ae9e-065a-49fb-8d02-9332a98a8f32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22523", "type": "seen", "source": "https://t.me/cibsecurity/50587", "content": "\u203c CVE-2022-22523 \u203c\n\nAn improper authentication vulnerability exists in the Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 Web-App which allows an authentication bypass to the context of an unauthorised user if free-access is disabled.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-28T18:34:16.000000Z"} {"uuid": "a815ae9e-065a-49fb-8d02-9332a98a8f32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22523", "type": "seen", "source": "https://t.me/cibsecurity/50587", "content": "\u203c CVE-2022-22523 \u203c\n\nAn improper authentication vulnerability exists in the Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 Web-App which allows an authentication bypass to the context of an unauthorised user if free-access is disabled.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-28T18:34:16.000000Z"} https://db.gcve.eu/sighting/a815ae9e-065a-49fb-8d02-9332a98a8f32/export Wed, 28 Sep 2022 18:34:16 +0000 https://db.gcve.eu/sighting/60225236-ff10-48bc-9cad-88dea6db3d82/export {"uuid": "60225236-ff10-48bc-9cad-88dea6db3d82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22526", "type": "seen", "source": "https://t.me/cibsecurity/50590", "content": "\u203c CVE-2022-22526 \u203c\n\nIn Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a missing authentication allows for full access via API.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-28T18:34:20.000000Z"} {"uuid": "60225236-ff10-48bc-9cad-88dea6db3d82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22526", "type": "seen", "source": "https://t.me/cibsecurity/50590", "content": "\u203c CVE-2022-22526 \u203c\n\nIn Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a missing authentication allows for full access via API.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-28T18:34:20.000000Z"} https://db.gcve.eu/sighting/60225236-ff10-48bc-9cad-88dea6db3d82/export Wed, 28 Sep 2022 18:34:20 +0000 https://db.gcve.eu/sighting/89f165a4-2d02-4bf9-95b4-f268791d2a32/export {"uuid": "89f165a4-2d02-4bf9-95b4-f268791d2a32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22525", "type": "seen", "source": "https://t.me/cibsecurity/50594", "content": "\u203c CVE-2022-22525 \u203c\n\nIn Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an remote attacker with admin rights could execute arbitrary commands due to missing input sanitization in the backup restore function\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-28T18:34:25.000000Z"} {"uuid": "89f165a4-2d02-4bf9-95b4-f268791d2a32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22525", "type": "seen", "source": "https://t.me/cibsecurity/50594", "content": "\u203c CVE-2022-22525 \u203c\n\nIn Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an remote attacker with admin rights could execute arbitrary commands due to missing input sanitization in the backup restore function\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-28T18:34:25.000000Z"} https://db.gcve.eu/sighting/89f165a4-2d02-4bf9-95b4-f268791d2a32/export Wed, 28 Sep 2022 18:34:25 +0000