Vulnerability Details CVE-2022-28814
Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 was discovered to be vulnerable to a relative path traversal vulnerability which enables remote attackers to read arbitrary files and gain full control of the device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.5%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2022-28814
-
cpe:2.3:a:gavazziautomation:cpy_car_park_server:*
-
cpe:2.3:h:gavazziautomation:uwp_3.0_monitoring_gateway_and_controller:-
-
cpe:2.3:o:gavazziautomation:uwp_3.0_monitoring_gateway_and_controller_firmware:*