3 matches found
CVE-2022-43483 CVE-2022-43483
Sewio’s Real-Time Location System RTLS Studio version 2.0.0 up to and including version 2.6.2 does not properly validate the input module name to the monitor services of the software. This could allow a remote attacker to access sensitive functions of the application and execute arbitrary system...
CVE-2022-43483
Sewio RTLS Studio 2.0.0–2.6.2 is vulnerable due to improper input validation of the module name in monitor services, enabling OS command execution. CVE-2022-43483 (OS command injection) is among several vulnerabilities in the same family affecting RTLS Studio 2.0.0–2.6.2, including CVEs 47911, 45...
CISA Warns of Flaws Affecting Industrial Control Systems from Major Manufacturers
The U.S. Cybersecurity and Infrastructure Security Agency CISA has released several Industrial Control Systems ICS advisories warning of critical security flaws affecting products from Sewio, InHand Networks, Sauter Controls, and Siemens. The most severe of the flaws relate to Sewio's RTLS Studio...