Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2023/02/01 12:0 a.m.7 views

CVE-2022-42970

A CWE-306: Missing Authentication for Critical Function The software does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. Affected Products: APC Easy UPS Online Monitoring Software Windows 7, 10, 11 & Windows...

9.8CVSS9.6AI score0.00712EPSS
Exploits0References1
CVE
CVE
added 2023/02/01 12:0 a.m.84 views

CVE-2022-42970

Schneider Electric APC Easy UPS Online Monitoring Software (Schneider Electric/APC Easy UPS Online Monitoring Software) versions prior to V2.5-GA (Windows 7/10/11 and Windows Server 2016/2019/2022) and prior to V2.5-GA-01-22261 (Windows 11/Server 2019/2022) are affected by CVE-2022-42970 due to m...

9.8CVSS9.5AI score0.00712EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/01/13 12:0 a.m.43 views

Schneider Electric APC Easy UPS Online Monitoring Software Missing Authentication (CVE-2022-42970)

Binary data schneiderelectricupsmonitoringsoftwarecve-2022-42970.nbin...

9.8CVSS9.6AI score0.00712EPSS
Exploits0References2
ICS
ICS
added 2022/12/13 12:0 a.m.53 views

Schneider Electric APC Easy UPS Online

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: APC Easy UPS Online Vulnerabilities: Missing Authentication for Critical Function, Unrestricted Upload of File with Dangerous Type, Incorrect Permission Assignment for...

9.8CVSS9.9AI score0.01071EPSS
Exploits0References4
Rows per page
Query Builder