Vulnerability Details CVE-2022-28813
In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could make use of an SQL-injection to gain access to a volatile temporary database with the current states of the device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.0%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2022-28813
-
cpe:2.3:a:gavazziautomation:cpy_car_park_server:*
-
cpe:2.3:h:gavazziautomation:uwp_3.0_monitoring_gateway_and_controller:-
-
cpe:2.3:o:gavazziautomation:uwp_3.0_monitoring_gateway_and_controller_firmware:*