CVE-2022-30232

Name of the Vulnerable Software and Affected Versions Wiser Smart versions prior to V4.5 EER21000 versions prior to V4.5 EER21001 versions prior to V4.5 Squirrel (affected versions not specified)

Description The issue is related to improper input validation, which could lead to potential remote code execution when an attacker intercepts and modifies a request on the same network or has configuration access to an ION device. Additionally, there is a buffer overflow issue in the thread call() function of the Squirrel programming language interpreter, which can be exploited by a remote attacker to cause a denial of service or execute arbitrary code using a specially crafted malicious file or script.

Recommendations For Wiser Smart versions prior to V4.5, update to a version later than V4.5. For EER21000 versions prior to V4.5, update to a version later than V4.5. For EER21001 versions prior to V4.5, update to a version later than V4.5. For Squirrel, at the moment, there is no information about a newer version that contains a fix for this vulnerability.