The UWP 3.0 family of Monitoring Gateways and Controllers and the CPY Car Park Server are affected by multiple vulnerabilities in their set-up software, runtime firmware, embedded Web interface.
UPDATE A (19.10.2022): Added Control block-Set CPX-CEC-C1 and Control block-SET
CPX-CMXX to affected products.
Unauthenticated access to critical webpage functions (e.g. reboot) may cause a denial of service of the device.
Multiple vulnerabilities have been found in myREX24 and myREX24.virtual.
An issue was discovered in myREX24 and myREX24.virtual in all versions through 2.11.2.
An issue was discovered in the mymbCONNECT24 and mbCONNECT24 software in all versions through V2.11.2.
Multiple vulnerabilities have been found in mymbCONNECT24 and mbCONNECT24.
Update A, 2022-09-07: