Vulnerabilities > Gavazziautomation > UWP 3 0 Monitoring Gateway AND Controller Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-28 | CVE-2022-22523 | Unspecified vulnerability in Gavazziautomation products An improper authentication vulnerability exists in the Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 Web-App which allows an authentication bypass to the context of an unauthorised user if free-access is disabled. | 7.5 |
| 2022-09-28 | CVE-2022-22524 | Unspecified vulnerability in Gavazziautomation products In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an unauthenticated remote attacker could utilize a SQL-Injection vulnerability to gain full database access, modify users and stop services . | 9.4 |