CVE-2022-0715
- EPSS 1.25%
- Veröffentlicht 09.03.2022 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:39:14
A CWE-287: Improper Authentication vulnerability exists that could cause an attacker to arbitrarily change the behavior of the UPS when a key is leaked and used to upload malicious firmware. Affected Product: APC Smart-UPS Family: SMT Series (SMT Ser...
CVE-2022-22805
- EPSS 13.44%
- Veröffentlicht 09.03.2022 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:47:28
A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exists that could cause remote code execution when an improperly handled TLS packet is reassembled. Affected Product: SmartConnect Family: SMT Series (SMT...
CVE-2022-22806
- EPSS 0.21%
- Veröffentlicht 09.03.2022 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:47:28
A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause an unauthenticated connection to the UPS when a malformed connection is sent. Affected Product: SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and...