← Back

Sewio

sewio

9 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Real Time Location System Studio
real-time_location_system_studio
9 CVEs

CVEs (9)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-47917
1Sewio
1Real Time Location System Studio
Jun 17, 2026
Jan 18, 2023
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to improper input validation of user input to several modules and services of the software. This could allow a...Show more
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to improper input validation of user input to several modules and services of the software. This could allow an attacker to delete arbitrary files and cause a denial-of-service condition. Show less
CVE-2022-47911
1Sewio
1Real Time Location System Studio
Jun 17, 2026
Jan 18, 2023
N/A· v4
7.2 HIGH· v3
N/A· v2
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 does not properly validate the input module name to the backup services of the software. This could allow a remote attacker...Show more
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 does not properly validate the input module name to the backup services of the software. This could allow a remote attacker to access sensitive functions of the application and execute arbitrary system commands. Show less
CVE-2022-47395
1Sewio
1Real Time Location System Studio
Jun 17, 2026
Jan 18, 2023
N/A· v4
8.1 HIGH· v3
N/A· v2
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to cross-site request forgery in its monitor services. An attacker could take advantage of this vulnerability...Show more
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to cross-site request forgery in its monitor services. An attacker could take advantage of this vulnerability to execute arbitrary maintenance operations and cause a denial-of-service condition. Show less
CVE-2022-46733
1Sewio
1Real Time Location System Studio
Jun 17, 2026
Jan 18, 2023
N/A· v4
9.6 CRITICAL· v3
N/A· v2
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to cross-site scripting in its backup services. An attacker could take advantage of this vulnerability to exec...Show more
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to cross-site scripting in its backup services. An attacker could take advantage of this vulnerability to execute arbitrary commands. Show less
CVE-2022-45444
1Sewio
1Real Time Location System Studio
Jun 17, 2026
Jan 18, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 contains hard-coded passwords for select users in the application’s database. This could allow a remote attacker to login to...Show more
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 contains hard-coded passwords for select users in the application’s database. This could allow a remote attacker to login to the database with unrestricted access. Show less
CVE-2022-45127
1Sewio
1Real Time Location System Studio
Jun 17, 2026
Jan 18, 2023
N/A· v4
8.1 HIGH· v3
N/A· v2
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to cross-site request forgery in its backup services. An attacker could take advantage of this vulnerability t...Show more
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to cross-site request forgery in its backup services. An attacker could take advantage of this vulnerability to execute arbitrary backup operations and cause a denial-of-service condition. Show less
CVE-2022-43483
1Sewio
1Real Time Location System Studio
Jun 17, 2026
Jan 18, 2023
N/A· v4
7.2 HIGH· v3
N/A· v2
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 does not properly validate the input module name to the monitor services of the software. This could allow a remote attacker...Show more
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 does not properly validate the input module name to the monitor services of the software. This could allow a remote attacker to access sensitive functions of the application and execute arbitrary system commands. Show less
CVE-2022-43455
1Sewio
1Real Time Location System Studio
Jun 17, 2026
Jan 18, 2023
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to improper input validation of user input to the service_start, service_stop, and service_restart modules of...Show more
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 is vulnerable to improper input validation of user input to the service_start, service_stop, and service_restart modules of the software. This could allow an attacker to start, stop, or restart arbitrary services running on the server. Show less
CVE-2022-41989
1Sewio
1Real Time Location System Studio
Jun 17, 2026
Jan 18, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 does not validate the length of RTLS report payloads during communication. This allows an attacker to send an exceedingly lo...Show more
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2 does not validate the length of RTLS report payloads during communication. This allows an attacker to send an exceedingly long payload, resulting in an out-of-bounds write to cause a denial-of-service condition or code execution. Show less