2 matches found
The vulnerability of the getMacAddressByIP function in the online monitoring software APC Easy UPS Online Monitoring Software and Easy UPS Online Monitoring Software allows a intruder to execute arbitrary code.
The vulnerability of the getMacAddressByIP function in the APC Easy UPS Online Monitoring Software and Easy UPS Online Monitoring Software exists due to the lack of measures taken to neutralize special elements used in the operating system command. Exploiting this vulnerability can allow a remote...
CVE-2020-7522
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in SFAPV9601 - APC Easy UPS On-Line Software V2.0 and earlier when accessing a vulnerable method of SoundUploadServlet which may lead to uploading executable files to non-specified directories...