In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could utilize an improper input validation on an API-submitted parameter to execute arbitrary OS commands.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://cert.vde.com/en/advisories/VDE-2022-029/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: CERTVDE
Published: 2022-09-28T13:45:32
Updated: 2024-08-03T06:03:53.054Z
Reserved: 2022-04-08T00:00:00
Link: CVE-2022-28811
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-09-28T14:15:10.343
Modified: 2022-10-28T22:50:52.547
Link: CVE-2022-28811
Redhat
No data.