github - ghsa-q4jp-hjwm-c743

GHSA-Q4JP-HJWM-C743

Vulnerability from github – Published: 2022-09-29 00:00 – Updated: 2022-09-29 00:00

Details

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy is prone to reflected XSS which only affects the Sentilo service.

Severity ?

7.6 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-28816"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-79",
      "CWE-89"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2022-09-28T14:15:00Z",
    "severity": "HIGH"
  },
  "details": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy is prone to reflected XSS which only affects the Sentilo service.",
  "id": "GHSA-q4jp-hjwm-c743",
  "modified": "2022-09-29T00:00:25Z",
  "published": "2022-09-29T00:00:25Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28816"
    },
    {
      "type": "WEB",
      "url": "https://cert.vde.com/en/advisories/VDE-2022-029"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L",
      "type": "CVSS_V3"
    }
  ]
}

CVE-2022-28816 (GCVE-0-2022-28816)

Vulnerability from cvelistv5 – Published: 2022-09-28 13:45 – Updated: 2025-05-20 20:36

Summary

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy is prone to reflected XSS which only affects the Sentilo service.

Severity ?

6.1 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWE

CWE-79 - Cross-site Scripting (XSS)

Assigner

CERTVDE

References

URL

Tags

https://cert.vde.com/en/advisories/VDE-2022-029/

x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

Carlo Gavazzi

UWP 3.0 Monitoring Gateway and Controller

Affected: 8 , < 8.5.0.3 (custom)

Carlo Gavazzi	UWP 3.0 Monitoring Gateway and Controller – Security Enhanced	Affected: 8 , < 8.5.0.3 (custom)
Carlo Gavazzi	UWP 3.0 Monitoring Gateway and Controller – EDP version	Affected: 8 , < 8.5.0.3 (custom)
Carlo Gavazzi	CPY Car Park Server	Affected: 2 , < 2.8.3 (custom)

Credits

Vera Mens from Claroty Research

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T06:03:53.101Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-28816",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-05-20T20:36:37.829229Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-05-20T20:36:50.107Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "UWP 3.0 Monitoring Gateway and Controller",
          "vendor": "Carlo Gavazzi",
          "versions": [
            {
              "lessThan": "8.5.0.3",
              "status": "affected",
              "version": "8",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
          "vendor": "Carlo Gavazzi",
          "versions": [
            {
              "lessThan": "8.5.0.3",
              "status": "affected",
              "version": "8",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
          "vendor": "Carlo Gavazzi",
          "versions": [
            {
              "lessThan": "8.5.0.3",
              "status": "affected",
              "version": "8",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "CPY Car Park Server",
          "vendor": "Carlo Gavazzi",
          "versions": [
            {
              "lessThan": "2.8.3",
              "status": "affected",
              "version": "2",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Vera Mens from Claroty Research"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy is prone to reflected XSS which only affects the Sentilo service."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-79",
              "description": "CWE-79 Cross-site Scripting (XSS)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-09-28T13:45:37.000Z",
        "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "shortName": "CERTVDE"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
        }
      ],
      "source": {
        "advisory": "VDE-2022-029",
        "discovery": "EXTERNAL"
      },
      "title": "Reflected XSS in Carlo Gavazzi UWP 3.0",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "info@cert.vde.com",
          "ID": "CVE-2022-28816",
          "STATE": "PUBLIC",
          "TITLE": "Reflected XSS in Carlo Gavazzi UWP 3.0"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "UWP 3.0 Monitoring Gateway and Controller",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_name": "8",
                            "version_value": "8.5.0.3"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 Security Enhanced",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_name": "8",
                            "version_value": "8.5.0.3"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "UWP 3.0 Monitoring Gateway and Controller \u2013 EDP version",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_name": "8",
                            "version_value": "8.5.0.3"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "CPY Car Park Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_name": "2",
                            "version_value": "2.8.3"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Carlo Gavazzi"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "Vera Mens from Claroty Research"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy is prone to reflected XSS which only affects the Sentilo service."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-79 Cross-site Scripting (XSS)"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://cert.vde.com/en/advisories/VDE-2022-029/",
              "refsource": "CONFIRM",
              "url": "https://cert.vde.com/en/advisories/VDE-2022-029/"
            }
          ]
        },
        "source": {
          "advisory": "VDE-2022-029",
          "discovery": "EXTERNAL"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
    "assignerShortName": "CERTVDE",
    "cveId": "CVE-2022-28816",
    "datePublished": "2022-09-28T13:45:37.000Z",
    "dateReserved": "2022-04-08T00:00:00.000Z",
    "dateUpdated": "2025-05-20T20:36:50.107Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

GHSA-Q4JP-HJWM-C743

CVE-2022-28816 (GCVE-0-2022-28816)

Tags

Sightings

Nomenclature