Path traversal

2022-11-1015:15:00

PRIOn knowledge base

www.prio-n.com

path traversal

upsmon pro

remote attacker

user privilege

bypass authentication

arbitrary system files

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.0%

JSON

UPSMON PRO’s has a path traversal vulnerability. A remote attacker with general user privilege can exploit this vulnerability to bypass authentication and access arbitrary system files.

CPENameOperatorVersion
upsmon_proeq2.57

CPE	Name	Operator	Version
	upsmon_pro	eq	2.57

References

www.twcert.org.tw/tw/cp-132-6679-a0695-1.html