// For flags

CVE-2023-6407

Schneider Electric APC Easy UPS Online deletePdfReportFile Directory Traversal Denial-of-Service Vulnerability

Severity Score

7.1
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
vulnerability exists that could cause arbitrary file deletion upon service restart when accessed by
a local and low-privileged attacker.

Existe una vulnerabilidad CWE-22: limitación inadecuada de un nombre de ruta a un directorio restringido ("Path Traversal") que podría causar la eliminación arbitraria de archivos al reiniciar el servicio cuando un atacante local y con pocos privilegios accede a él.

This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Schneider Electric APC Easy UPS Online. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
The specific flaw exists within the deletePdfReportFile method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.

*Credits: 06fe5fd2bc53027c4a3b7e395af0b850e7b8a044
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
High
Attack Vector
Local
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
High
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2023-11-30 CVE Reserved
  • 2023-12-14 CVE Published
  • 2024-08-02 CVE Updated
  • 2024-09-16 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Schneider-electric
Search vendor "Schneider-electric"
Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software"
< 2.6-ga-01-23248
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software" and version " < 2.6-ga-01-23248"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows 10 1507
Search vendor "Microsoft" for product "Windows 10 1507"
-x64
Safe
Schneider-electric
Search vendor "Schneider-electric"
Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software"
< 2.6-ga-01-23248
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software" and version " < 2.6-ga-01-23248"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows 10 1507
Search vendor "Microsoft" for product "Windows 10 1507"
-x86
Safe
Schneider-electric
Search vendor "Schneider-electric"
Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software"
< 2.6-ga-01-23248
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software" and version " < 2.6-ga-01-23248"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows 11 21h2
Search vendor "Microsoft" for product "Windows 11 21h2"
-arm64
Safe
Schneider-electric
Search vendor "Schneider-electric"
Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software"
< 2.6-ga-01-23248
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software" and version " < 2.6-ga-01-23248"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows 11 21h2
Search vendor "Microsoft" for product "Windows 11 21h2"
-x64
Safe
Schneider-electric
Search vendor "Schneider-electric"
Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software"
< 2.6-ga-01-23248
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software" and version " < 2.6-ga-01-23248"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows Server 2016
Search vendor "Microsoft" for product "Windows Server 2016"
--
Safe
Schneider-electric
Search vendor "Schneider-electric"
Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software"
< 2.6-ga-01-23248
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software" and version " < 2.6-ga-01-23248"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows Server 2019
Search vendor "Microsoft" for product "Windows Server 2019"
--
Safe
Schneider-electric
Search vendor "Schneider-electric"
Easy Ups Online Monitoring Software
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software"
< 2.6-ga-01-23248
Search vendor "Schneider-electric" for product "Easy Ups Online Monitoring Software" and version " < 2.6-ga-01-23248"
-
Affected
in Microsoft
Search vendor "Microsoft"
Windows Server 2022
Search vendor "Microsoft" for product "Windows Server 2022"
--
Safe