Vulnerabilities > CVE-2022-47395 - Unspecified vulnerability in Sewio Real-Time Location System Studio

CVSS 8.1 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

sewio

NVD

Published: 2023-01-18

Updated: 2024-11-21

Summary

Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to cross-site request forgery in its monitor services. An attacker could take advantage of this vulnerability to execute arbitrary maintenance operations and cause a denial-of-service condition.

Vulnerable Configurations

Part	Description	Count
Application	Sewio Sewio Real Time Location System Studio *	1

References

https://www.cisa.gov/uscert/ics/advisories/icsa-23-012-01
https://www.cisa.gov/uscert/ics/advisories/icsa-23-012-01