Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 27/04/2020 Updated: 14/09/2021

CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 356

Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

UPS Adapter CS141 prior to 1.90 allows Directory Traversal. An attacker with Admin or Engineer login credentials could exploit the vulnerability by manipulating variables that reference files and by doing this achieve access to files and directories outside the web root folder. An attacker may access arbitrary files and directories stored in the file system, but integrity of the files are not jeopardized as attacker have read access rights only.

Vulnerable Product	Search on Vulmon	Subscribe to Product
abb cs141_firmware
generex cs141_firmware

CWE-22 https://library.e.abb.com/public/ee46f3ff5823400f991ebd9bd43a297e/2CMT2020-005913%20Security%20Advisory%20CS141.pdf https://www.generex.de/index.php?option=com_content&task=view&id=185&Itemid=249 https://www.generex.de/support/changelogs/cs141/page:2 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-11420

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect