Lucene search
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SCHNEIDER_ELECTRIC_UPS_MONITORING_SOFTWARE_CVE-2022-42970.NBINHistoryJan 13, 2023 - 12:00 a.m.
Schneider Electric APC Easy UPS Online Monitoring Software Missing Authentication (CVE-2022-42970)
2023-01-1300:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
24
schneider electric
apc easy ups
software
authentication
cve-2022-42970
monitoring
scanner
binary data
0.002 Low
EPSS
Percentile
57.6%
The Schneider Electric APC Easy UPS Online Monitoring Software running on the remote host is missing authentication for critical functions. An unauthenticated, remote attacker can exploit this, via a specially crafted message, to change the application’s Administrator password.
Binary data schneider_electric_ups_monitoring_software_cve-2022-42970.nbin| Vendor | Product | Version | CPE |
|---|---|---|---|
| schneider-electric | apc_easy_ups_online_software | cpe:/o:schneider-electric:apc_easy_ups_online_software |
Related
nvd
nvd
CVE-2022-42970
2023-02-01 04:15:08
prion
prion
Authentication flaw
2023-02-01 04:15:00
cve
cve
CVE-2022-42970
2023-02-01 04:15:08
zdi
zdi
cvelist
cvelist
CVE-2022-42970
2023-02-01 00:00:00
ics
ics
Schneider Electric APC Easy UPS Online
2022-12-15 12:00:00
0.002 Low
EPSS
Percentile
57.6%
Related for SCHNEIDER_ELECTRIC_UPS_MONITORING_SOFTWARE_CVE-2022-42970.NBIN