Lucene search
PRIOn knowledge basePRION:CVE-2022-42971HistoryFeb 01, 2023 - 4:15 a.m.
Design/Logic Flaw
2023-02-0104:15:00
PRIOn knowledge base
www.prio-n.com
2
remote code execution
file upload
apc
schneider electric
vulnerability
windows
nvd
A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could cause remote code execution when the attacker uploads a malicious JSP file. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GA), APC Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GA-01-22261), Schneider Electric Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GS), Schneider Electric Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GS-01-22261)
Related
cve
cve
CVE-2022-42971
2023-02-01 04:15:08
zdi
zdi
cvelist
cvelist
CVE-2022-42971
2023-02-01 00:00:00
nvd
nvd
CVE-2022-42971
2023-02-01 04:15:08
ics
ics
Schneider Electric APC Easy UPS Online
2022-12-15 12:00:00