Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In February 2023
CVE-2022-44421
In wlan driver, there is a possible missing permission check. This could lead to local In wlan driver, information disclosure.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-02-12
CVE-2022-44447
In wlan driver, there is a possible null pointer dereference issue due to a missing bounds check. This could lead to local denial of service in wlan services.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-02-12
CVE-2022-44448
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-02-12
CVE-2022-45085
Server-Side Request Forgery (SSRF) vulnerability in Group Arge Energy and Control Systems Smartpower Web allows : Server Side Request Forgery.This issue affects Smartpower Web: before 23.01.01.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-02-12
CVE-2022-45086
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Group Arge Energy and Control Systems Smartpower Web allows Cross-Site Scripting (XSS). This issue affects Smartpower Web: before 23.01.01.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-02-12
CVE-2022-45087
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Group Arge Energy and Control Systems Smartpower Web allows Cross-Site Scripting (XSS). This issue affects Smartpower Web: before 23.01.01.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-02-12
CVE-2022-45088
Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web allows PHP Local File Inclusion.This issue affects Smartpower Web: before 23.01.01.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-02-12
CVE-2022-45089
Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web allows SQL Injection.This issue affects Smartpower Web: before 23.01.01.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-02-12
CVE-2022-45090
Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web allows SQL Injection.This issue affects Smartpower Web: before 23.01.01.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-02-12
CVE-2022-45091
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Group Arge Energy and Control Systems Smartpower Web allows Cross-Site Scripting (XSS).This issue affects Smartpower Web: before 23.01.01.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-02-12


Products
Pricing
Contact Us

Shodan ® - All rights reserved