Lucene search
K

4 matches found

NVD
NVD
added 2023/02/01 4:15 a.m.35 views

CVE-2022-42973

A CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause local privilege escalation when local attacker connects to the database. Affected Products: APC Easy UPS Online Monitoring Software Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GA, APC...

7.8CVSS7.9AI score0.00163EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/02/01 12:0 a.m.7 views

CVE-2022-42973

A CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause local privilege escalation when local attacker connects to the database. Affected Products: APC Easy UPS Online Monitoring Software Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GA, APC...

7.8CVSS7.8AI score0.00163EPSS
Exploits0References1
CVE
CVE
added 2023/02/01 12:0 a.m.52 views

CVE-2022-42973

Schneider Electric APC Easy UPS Online Monitoring Software (and APC Easy UPS Online Monitoring Software) versions prior to V2.5-GA, V2.5-GA-01-22261, V2.5-GS, or GS-01-22261 are affected by CVE-2022-42973 (CWE-798): use of hard-coded credentials in the database, enabling local privilege escalatio...

7.8CVSS7.7AI score0.00163EPSS
Exploits0References1Affected Software1
ICS
ICS
added 2022/12/13 12:0 a.m.53 views

Schneider Electric APC Easy UPS Online

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: APC Easy UPS Online Vulnerabilities: Missing Authentication for Critical Function, Unrestricted Upload of File with Dangerous Type, Incorrect Permission Assignment for...

9.8CVSS9.9AI score0.01071EPSS
Exploits0References4
Rows per page
Query Builder