CVE-2022-30233

Name of the Vulnerable Software and Affected Versions Wiser Smart versions 4.5 and prior EER21000 versions 4.5 and prior EER21001 versions 4.5 and prior

Description A vulnerability exists due to improper input validation, which could allow malicious manipulation of the product when a user is tricked into performing certain actions on a webpage. This issue is related to insufficient validation of user input, potentially allowing a remote attacker to elevate their privileges using a specially crafted malicious webpage.

Recommendations For Wiser Smart versions 4.5 and prior, consider restricting access to webpages that may be used to exploit this issue until a fix is available. For EER21000 versions 4.5 and prior, avoid using the product for critical operations that could be manipulated through malicious webpages until a patch is released. For EER21001 versions 4.5 and prior, as a temporary workaround, consider disabling any features that rely on user input validation to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.