Lucene search
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SCHNEIDER_ELECTRIC_UPS_MONITORING_SOFTWARE_UNAUTH_RMI.NBINHistoryMay 25, 2023 - 12:00 a.m.
Schneider Electric APC Easy UPS Online Monitoring Software Unauthenticated RMI Calls (CVE-2023-28411)
2023-05-2500:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
schneider electric
apc
easy ups
monitoring software
unauthenticated
rmi calls
cve-2023-28411
binary data
vulnerability
scanner
0.0004 Low
EPSS
Percentile
9.0%
The Schneider Electric APC Easy UPS Online Monitoring Software running on the remote host is missing authentication for critical functions. An unauthenticated, remote attacker can exploit this, via specially crafted messages, to invoke methods of remote Java objects via RMI.
Binary data schneider_electric_ups_monitoring_software_unauth_rmi.nbin| Vendor | Product | Version | CPE |
|---|---|---|---|
| schneider-electric | apc_easy_ups_online_software | cpe:/o:schneider-electric:apc_easy_ups_online_software |
Related
cvelist
cvelist
CVE-2023-28411
2023-05-10 13:17:06
prion
prion
Double free
2023-05-10 14:15:00
cve
cve
CVE-2023-28411
2023-05-10 14:15:33
nvd
nvd
CVE-2023-28411
2023-05-10 14:15:33
intel
intel
Intel® Server Board BMC Firmware Advisory
2023-05-09 00:00:00
f5
f5
K000134781 : Multiple Intel Server Board BMC vulnerabilities
2023-05-25 00:00:00
0.0004 Low
EPSS
Percentile
9.0%
Related for SCHNEIDER_ELECTRIC_UPS_MONITORING_SOFTWARE_UNAUTH_RMI.NBIN