Vulnerabilidades en Carlo Gavazzi

12 resultados

CVE-2017-20184HIGHCarlo Gavazzi Powersoft prone to Path TraversalEPSS 2.8%CVE-2022-28814CRITICALPath traversal in Carlo Gavazzi UWP 3.0 could lead to full device accessEPSS 1.1%CVE-2022-28811CRITICALPossible command injection in Car Park Server in Carlo Gavazzi UWP3.0EPSS 1.0%CVE-2022-22525HIGHCommand injection in restore function of Carlo Gavazzi UWP3.0 allows for command injectionEPSS 1.0%CVE-2022-22524CRITICALSQL-injection in Carlo Gavazzi UWP 3.0 allows for full database accessEPSS 0.9%CVE-2022-22522CRITICALHard-coded credentials in Carlo Gavazzi UWP3.0 allows for authentication bypass and full control of the deviceEPSS 0.8%CVE-2022-28812CRITICALUse of Hard-coded Credentials in UWP3.0 allows SuperUser authentication bypass in Car Park Server.EPSS 0.8%CVE-2022-28813HIGHSQL-injection in Car Park Server 3.0 allows for full database access.EPSS 0.8%CVE-2022-22526CRITICALMissing authentication for API in Carlo Gavazzi UWP 3.0 Car Park ServerEPSS 0.7%CVE-2022-22523HIGHCarlo Gavazzi UWP 3.0 WebApp allows for authentication bypassEPSS 0.6%CVE-2022-28815LOWSQL-Injection in Carlo Gavazzi UWP 3.0 Sentilo Proxy EPSS 0.4%CVE-2022-28816MEDIUMReflected XSS in Carlo Gavazzi UWP 3.0EPSS 0.4%