CRITICAL🇵🇱 Wersja polska

CVE-2022-0715

CVSS 9.1v3.1pub. 2022-03-09upd. 2026-05-29

A CWE-287: Improper Authentication vulnerability exists that could cause an attacker to arbitrarily change the behavior of the UPS when a key is leaked and used to upload malicious firmware. Affected Product: APC Smart-UPS Family: SMT Series (SMT Series ID=18: UPS 09.8 and prior / SMT Series ID=1040: UPS 01.2 and prior / SMT Series ID=1031: UPS 03.1 and prior), SMC Series (SMC Series ID=1005: UPS 14.1 and prior / SMC Series ID=1007: UPS 11.0 and prior / SMC Series ID=1041: UPS 01.1 and prior), SCL Series (SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior), SMX Series (SMX Series ID=20: UPS 10.2 and prior / SMX Series ID=23: UPS 07.0 and prior), SRT Series (SRT Series ID=1010/1019/1025: UPS 08.3 and prior / SRT Series ID=1024: UPS 01.0 and prior / SRT Series ID=1020: UPS 10.4 and prior / SRT Series ID=1021: UPS 12.2 and prior / SRT Series ID=1001/1013: UPS 05.1 and prior / SRT Series ID=1002/1014: UPSa05.2 and prior), APC SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
  • Schneider Electric Scl Series 1029 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Scl Series 1029 Ups Firmware

    OS
    Schneider-Electric
    ≤ 02.5
  • Schneider Electric Scl Series 1030 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Scl Series 1030 Ups Firmware

    OS
    Schneider-Electric
    ≤ 02.5
  • Schneider Electric Scl Series 1036 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Scl Series 1036 Ups Firmware

    OS
    Schneider-Electric
    ≤ 02.5
  • Schneider Electric Scl Series 1037 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Scl Series 1037 Ups Firmware

    OS
    Schneider-Electric
    ≤ 03.1
  • Schneider Electric Smc Series 1005 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Smc Series 1005 Ups Firmware

    OS
    Schneider-Electric
    ≤ 14.1
  • Schneider Electric Smc Series 1007 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Smc Series 1007 Ups Firmware

    OS
    Schneider-Electric
    ≤ 11.0
  • Schneider Electric Smc Series 1018 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Smc Series 1018 Ups Firmware

    OS
    Schneider-Electric
    ≤ 04.2
  • Schneider Electric Smc Series 1041 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Smc Series 1041 Ups Firmware

    OS
    Schneider-Electric
    ≤ 01.1
  • Schneider Electric Smtl Series 1026 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Smtl Series 1026 Ups Firmware

    OS
    Schneider-Electric
    ≤ 02.9
  • Schneider Electric Smt Series 1015 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Smt Series 1015 Ups Firmware

    OS
    Schneider-Electric
    ≤ 04.5
  • Schneider Electric Smt Series 1031 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Smt Series 1031 Ups Firmware

    OS
    Schneider-Electric
    ≤ 03.1
  • Schneider Electric Smt Series 1040 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Smt Series 1040 Ups Firmware

    OS
    Schneider-Electric
    ≤ 01.2
  • Schneider Electric Smt Series 18 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Smt Series 18 Ups Firmware

    OS
    Schneider-Electric
    ≤ 09.8
  • Schneider Electric Smx Series 1031 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Smx Series 1031 Ups Firmware

    OS
    Schneider-Electric
    ≤ 03.1
  • Schneider Electric Smx Series 20 Ups

    HW
    Schneider-Electric
    wszystkie wersje
  • Schneider Electric Smx Series 20 Ups Firmware

    OS
    Schneider-Electric
    ≤ 10.2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2022-22805CRITICAL9.8ten sam produkt

A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exists that co...

CVE-2022-22806CRITICAL9.8ten sam produkt

A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause an unauthenticated co...

CVE-2018-7841CRITICAL9.8⚠ KEVten sam vendor

A SQL Injection (CWE-89) vulnerability exists in U.motion Builder software version 1.3.4 which could cause unw...

CVE-2024-10575CRITICAL10.0PL ✓ten sam vendor

Brak autoryzacji w Schneider Electric EcoStruxure IT Gateway (CVSS 10.0)

CVE-2024-6407CRITICAL9.8PL ✓ten sam vendor

Ujawnienie poświadczeń w urządzeniu Schneider Electric WHC-5918A