// For flags

CVE-2023-29411

Schneider Electric APC Easy UPS Online updateManagerPassword Exposed Dangerous Function Authentication Bypass Vulnerability

Severity Score

9.8
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A CWE-306: Missing Authentication for Critical Function vulnerability exists that could allow
changes to administrative credentials, leading to potential remote code execution without
requiring prior authentication on the Java RMI interface.

This vulnerability allows remote attackers to bypass authentication on affected installations of Schneider Electric APC Easy UPS Online. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the updateManagerPassword function. The issue results from the exposure of a dangerous function. An attacker can leverage this vulnerability to bypass authentication on the system.

*Credits: Esjay (@esj4y)
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2023-04-05 CVE Reserved
  • 2023-04-14 CVE Published
  • 2024-08-02 CVE Updated
  • 2024-11-08 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-306: Missing Authentication for Critical Function
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Schneider-electric
Search vendor "Schneider-electric"
Apc Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Apc Easy Ups Online Monitoring Software"
<= 2.5-ga-01-22320
Search vendor "Schneider-electric" for product "Apc Easy Ups Online Monitoring Software" and version " <= 2.5-ga-01-22320"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows 10
Search vendor "Microsoft" for product "Windows 10"
--
Safe
Schneider-electric
Search vendor "Schneider-electric"
Apc Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Apc Easy Ups Online Monitoring Software"
<= 2.5-ga-01-22320
Search vendor "Schneider-electric" for product "Apc Easy Ups Online Monitoring Software" and version " <= 2.5-ga-01-22320"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows 11
Search vendor "Microsoft" for product "Windows 11"
--
Safe
Schneider-electric
Search vendor "Schneider-electric"
Apc Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Apc Easy Ups Online Monitoring Software"
<= 2.5-ga-01-22320
Search vendor "Schneider-electric" for product "Apc Easy Ups Online Monitoring Software" and version " <= 2.5-ga-01-22320"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows Server 2016
Search vendor "Microsoft" for product "Windows Server 2016"
--
Safe
Schneider-electric
Search vendor "Schneider-electric"
Apc Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Apc Easy Ups Online Monitoring Software"
<= 2.5-ga-01-22320
Search vendor "Schneider-electric" for product "Apc Easy Ups Online Monitoring Software" and version " <= 2.5-ga-01-22320"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows Server 2019
Search vendor "Microsoft" for product "Windows Server 2019"
--
Safe
Schneider-electric
Search vendor "Schneider-electric"
Apc Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Apc Easy Ups Online Monitoring Software"
<= 2.5-ga-01-22320
Search vendor "Schneider-electric" for product "Apc Easy Ups Online Monitoring Software" and version " <= 2.5-ga-01-22320"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows Server 2022
Search vendor "Microsoft" for product "Windows Server 2022"
--
Safe
Schneider-electric
Search vendor "Schneider-electric"
Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software"
<= 2.5-gs-01-22320
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software" and version " <= 2.5-gs-01-22320"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows 10
Search vendor "Microsoft" for product "Windows 10"
--
Safe
Schneider-electric
Search vendor "Schneider-electric"
Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software"
<= 2.5-gs-01-22320
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software" and version " <= 2.5-gs-01-22320"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows 11
Search vendor "Microsoft" for product "Windows 11"
--
Safe
Schneider-electric
Search vendor "Schneider-electric"
Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software"
<= 2.5-gs-01-22320
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software" and version " <= 2.5-gs-01-22320"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows Server 2016
Search vendor "Microsoft" for product "Windows Server 2016"
--
Safe
Schneider-electric
Search vendor "Schneider-electric"
Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software"
<= 2.5-gs-01-22320
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software" and version " <= 2.5-gs-01-22320"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows Server 2019
Search vendor "Microsoft" for product "Windows Server 2019"
--
Safe
Schneider-electric
Search vendor "Schneider-electric"
Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software"
<= 2.5-gs-01-22320
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software" and version " <= 2.5-gs-01-22320"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows Server 2022
Search vendor "Microsoft" for product "Windows Server 2022"
--
Safe