Lucene search

CVE-2022-42973

🗓️ 01 Feb 2023 04:09:15Reported by schneiderType

CWE-798: Use of Hard-coded Credentials vulnerability in APC and Schneider Electric Easy UPS Online Monitoring Software could lead to local privilege escalation

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Prion	Hardcoded credentials	1 Feb 202304:15	–	prion
Vulnrichment	CVE-2022-42973	1 Feb 202300:00	–	vulnrichment
Zero Day Initiative	Schneider Electric APC Easy UPS Online SNMPDBManager Use of Hard-Coded Credentials Local Privilege Escalation Vulnerability	17 May 202300:00	–	zdi
Cvelist	CVE-2022-42973	1 Feb 202300:00	–	cvelist
NVD	CVE-2022-42973	1 Feb 202304:15	–	nvd
ICS	Schneider Electric APC Easy UPS Online	13 Dec 202200:00	–	ics

Nvd

Node

schneider-electric apc_easy_ups_online_monitoring_softwareRange<2.5-ga-01-22320

AND

microsoft windows_11Match--

microsoft windows_server_2019Match-

microsoft windows_server_2022Match-

Node

schneider-electric easy_ups_online_monitoring_softwareRange<2.5-gs-01-22320

AND

microsoft windows_11Match--

microsoft windows_server_2019Match-

microsoft windows_server_2022Match-

Node

schneider-electric apc_easy_ups_online_monitoring_softwareRange<2.5-ga

AND

microsoft windows_10Match--

microsoft windows_11Match--

microsoft windows_7Match-

microsoft windows_server_2016Match-

microsoft windows_server_2019Match-

microsoft windows_server_2022Match-

Node

schneider-electric easy_ups_online_monitoring_softwareRange<2.5-gs

AND

microsoft windows_10Match--

microsoft windows_11Match--

microsoft windows_7Match-

microsoft windows_server_2016Match-

microsoft windows_server_2019Match-

microsoft windows_server_2022Match-

[
  {
    "vendor": "Schneider Electric",
    "product": "APC Easy UPS Online Monitoring Software",
    "versions": [
      {
        "version": "Windows 7, 10, 11 Windows Server 2016, 2019, 2022",
        "status": "affected",
        "lessThan": "V2.5-GA",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Schneider Electric",
    "product": "APC Easy UPS Online Monitoring Software",
    "versions": [
      {
        "version": "(Windows 11, Windows Server 2019, 2022",
        "status": "affected",
        "lessThan": "V2.5-GA-01-22261",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Schneider Electric",
    "product": "Schneider Electric Easy UPS Online Monitoring Software",
    "versions": [
      {
        "version": "Windows 7, 10, 11 Windows Server 2016, 2019, 2022",
        "status": "affected",
        "lessThan": "V2.5-GS",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Schneider Electric",
    "product": "Schneider Electric Easy UPS Online Monitoring Software",
    "versions": [
      {
        "version": "Windows 11, Windows Server 2019, 2022",
        "status": "affected",
        "lessThan": "V2.5-GS-01-22261",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
download	www.download.schneider-electric.com/files

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Feb 2023 04:15Current

7.7High risk

Vulners AI Score7.7

CVSS37.8

EPSS0.00044

SSVC

CWE-798