Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
generex cs141 firmware vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2020-11420
UPS Adapter CS141 prior to 1.90 allows Directory Traversal. An attacker with Admin or Engineer login credentials could exploit the vulnerability by manipulating variables that reference files and by doing this achieve access to files and directories outside the web root folder. A...
Abb Cs141 Firmware
Generex Cs141 Firmware
9.1
CVSSv3
CVE-2022-47189
Generex UPS CS141 below 2.06 version, allows an malicious user toupload a firmware file containing an incorrect configuration, in order to disrupt the normal functionality of the device.
Generex Cs141 Firmware
9.8
CVSSv3
CVE-2022-47190
Generex UPS CS141 below 2.06 version, could allow a remote malicious user to upload a firmware file containing a webshell that could allow him to execute arbitrary code as root.
Generex Cs141 Firmware
8.8
CVSSv3
CVE-2022-47192
Generex UPS CS141 below 2.06 version, could allow a remote malicious user to upload a backup file containing a modified "users.json" to the web server of the device, allowing him to replace the administrator password.
Generex Cs141 Firmware
9.1
CVSSv3
CVE-2022-47186
There is an unrestricted upload of file vulnerability in Generex CS141 below 2.06 version. An attacker could upload and/or delete any type of file, without any format restriction and without any authentication, in the "upload" directory.
Generex Cs141 Firmware
8.8
CVSSv3
CVE-2022-47191
Generex UPS CS141 below 2.06 version, could allow a remote malicious user to upload a firmware file containing a file with modified permissions, allowing him to escalate privileges.
Generex Cs141 Firmware
7.2
CVSSv3
CVE-2022-42457
Generex CS141 up to and including 2.10 allows remote command execution by administrators via a web interface that reaches run_update in /usr/bin/gxserve-update.sh (e.g., command execution can occur via a reverse shell installed by install.sh).
Generex Cs141 Firmware
1 Github repository
6.1
CVSSv3
CVE-2022-47187
There is a file upload XSS vulnerability in Generex CS141 below 2.06 version. The web application allows file uploading, making it possible to upload a file with HTML content. When HTML files are allowed, XSS payload can be injected into the uploaded file.
Generex Cs141 Firmware
7.5
CVSSv3
CVE-2022-47188
There is an arbitrary file reading vulnerability in Generex UPS CS141 below 2.06 version. An attacker, making use of the default credentials, could upload a backup file containing a symlink to /etc/shadow, allowing him to obtain the content of this path.
Generex Cs141 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started