Vulnerabilities > CVE-2022-47192 - Unspecified vulnerability in Generex Cs141 Firmware
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Generex UPS CS141 below 2.06 version, could allow a remote attacker to upload a backup file containing a modified "users.json" to the web server of the device, allowing him to replace the administrator password.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 5 | |
Hardware | 1 |
References
- https://www.generex.de/support/changelogs/cs141/2-12
- https://www.generex.de/support/changelogs/cs141/2-12
- https://www.generex.de/support/changelogs/cs141/page:2
- https://www.generex.de/support/changelogs/cs141/page:2
- https://www.incibe-cert.es/en/early-warning/ics-advisories/update-03032023-multiple-vulnerabilities-generex-ups-cs141
- https://www.incibe-cert.es/en/early-warning/ics-advisories/update-03032023-multiple-vulnerabilities-generex-ups-cs141