CVE-2022-22524 Information

Description

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an unauthenticated remote attacker could utilize a SQL-Injection vulnerability to gain full database access modify users and stop services .

Reference

https://cert.vde.com/en/advisories/VDE-2022-029/