Improper input validation in Sewio Real-time_location_system_studio
CVE-2022-47917
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to improper input validation of user input to several modules and services of the software. This could allow an attacker to delet…
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.007 (47.9th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.8 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H.
Affected products
- Sewio Real-time_location_system_studio
- Sewio Rtls Studio — versions 2.0.0
Weakness classification (CWE)
References
- ics-cert@hq.dhs.gov (US Government Resource, Third Party Advisory)
Frequently asked questions
- What is CVE-2022-47917?
- CVE-2022-47917 is a medium-severity vulnerability in Sewio Real-time_location_system_studio, classified under Improper Input Validation. CVSS score: 6.8/10. Published 2023-01-18.
- How severe is CVE-2022-47917?
- Medium severity. CVSS v3 base score is 6.8 out of 10.