Lucene search
K

7 matches found

CNVD
CNVD
added 2023/04/21 12:0 a.m.17 views

Schneider Electric Easy UPS Online Monitoring Software Access Control Error Vulnerability

Schneider Electric Easy UPS Online Monitoring Software is a power monitoring software from the French company Schneider Electric Schneider Electric. The Schneider Electric Easy UPS Online Monitoring Software suffers from an Access Control Error vulnerability that stems from a lack of authenticati...

9.8CVSS7.8AI score0.01315EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/04/18 12:0 a.m.4 views

The vulnerability of the getMacAddressByIP function in the online monitoring software APC Easy UPS Online Monitoring Software and Easy UPS Online Monitoring Software allows a intruder to execute arbitrary code.

The vulnerability of the getMacAddressByIP function in the APC Easy UPS Online Monitoring Software and Easy UPS Online Monitoring Software exists due to the lack of measures taken to neutralize special elements used in the operating system command. Exploiting this vulnerability can allow a remote...

10CVSS8.1AI score0.01223EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2023/02/01 4:15 a.m.5 views

CVE-2022-42972

A CWE-732: Incorrect Permission Assignment for Critical Resource vulnerability exists that could cause local privilege escalation when a local attacker modifies the webroot directory. Affected Products: APC Easy UPS Online Monitoring Software Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 -...

7.8CVSS5.8AI score0.00177EPSS
Exploits0References1
OSV
OSV
added 2023/02/01 4:15 a.m.5 views

CVE-2022-42973

A CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause local privilege escalation when local attacker connects to the database. Affected Products: APC Easy UPS Online Monitoring Software Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GA, APC...

7.8CVSS5.8AI score0.00163EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/03/11 12:0 a.m.8 views

The vulnerability of Microprogrammed Software Sources for APC Smart-UPS battery backup systems of the SMT, SMC, SMTL, SCL, SMX series is related to errors in processing TLS packets. This vulnerability allows a hacker to execute arbitrary code.

The vulnerability of Microprogrammed Software Sources for APC Smart-UPS battery backup systems of the SMT, SMC, SMTL, SCL, and SMX series is related to errors in processing TLS packets. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS8.4AI score0.11668EPSS
Exploits0References3Affected Software8
OSV
OSV
added 2020/08/31 5:15 p.m.4 views

CVE-2020-7522

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in SFAPV9601 - APC Easy UPS On-Line Software V2.0 and earlier when accessing a vulnerable method of SoundUploadServlet which may lead to uploading executable files to non-specified directories...

9.8CVSS7.3AI score0.01659EPSS
Exploits0References1
CNVD
CNVD
added 2016/12/01 12:0 a.m.2 views

WinPower Elevation of Privilege Vulnerability

WinPower is a UPS monitoring software. WinPower suffers from an elevation of privilege vulnerability. An attacker is allowed to exploit the vulnerability to elevate privileges...

7.2AI score
Exploits0References1
Rows per page
Query Builder