Design/Logic Flaw

2022-11-1015:15:00

PRIOn knowledge base

www.prio-n.com

upsmon pro

sensitive data

http protocol

vulnerability

unauthenticated attacker

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.3%

JSON

UPSMON PRO transmits sensitive data in cleartext over HTTP protocol. An unauthenticated remote attacker can exploit this vulnerability to access sensitive data.

CPENameOperatorVersion
upsmon_proeq2.57

CPE	Name	Operator	Version
	upsmon_pro	eq	2.57

References

www.twcert.org.tw/tw/cp-132-6681-e9650-1.html