6 matches found
APC Smart-UPS Authentication Bypass (CVE-2022-22806)
An authentication bypass vulnerability exists in APC Smart-UPS. Successful exploitation of this vulnerability would allow remote attackers to obtain sensitive information and gain unauthorized access into the affected system...
CVE-2022-22806
A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause an unauthenticated connection to the UPS when a malformed connection is sent. Affected Product: SmartConnect Family: SMT Series SMT Series ID=1015: UPS 04.5 and prior, SMC Series SMC Series ID=1018: UPS 04.2...
CVE-2022-22806
A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause an unauthenticated connection to the UPS when a malformed connection is sent. Affected Product: SmartConnect Family: SMT Series SMT Series ID=1015: UPS 04.5 and prior, SMC Series SMC Series ID=1018: UPS 04.2...
CVE-2022-22806
CVE-2022-22806 describes an Authentication Bypass by Capture-replay affecting APC/Schneider Electric Smart-UPS lines. Affected products and versions (pre-fix): SMT Series <= 04.5, SMC Series <= 04.2, SMTL Series <= 02.9, SCL Series <= 02.5 (and SCL <= 03.1), SMX Series 04.5, SMC &...
CVE-2022-22806
A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause an unauthenticated connection to the UPS when a malformed connection is sent. Affected Product: SmartConnect Family: SMT Series SMT Series ID=1015: UPS 04.5 and prior, SMC Series SMC Series ID=1018: UPS 04.2...
CVE-2022-22806
creationtimestamp| type| source ---|---|--- 2022-03-09 10:42:42+00:00| published-proof-of-concept| https://t.me/habrcomnews/3948 2022-03-09 15:30:00+00:00| seen| https://t.me/truesecator/2711 2022-03-09 22:15:07+00:00| seen| https://t.me/cibsecurity/38620 2022-03-10 17:35:45+00:00| exploited|...