VDB
CNVD-2022-18774
CNVD-2022-18774
PUBLISHED
Schneider Electric APC Smart-UPS SMC Series等都是法国施耐德电气(Schneider Electric)公司的产品。Schneider Electric APC Smart-UPS SMC Series是一款适用于单台服务器、低功耗网络和销售点 (POS) 设备的入门级 UPS。Schneider Electric APC Smart-UPS SMT Series是一款服务器、销售点、路由器、交换机、集线器和其他网络设备的线路交互式电源保护。Schneider Electric APC Smart-UPS SMX Series是一款智能高效网络电源保护。 Schneider Electric多款产品存在身份验证绕过漏洞,攻击者可利用该漏洞在发送错误的连接时导致与不间断电源的未经验证的连接。
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Schneider Electric SMT Series ID=1015 <=UPS 04.5 | ||
| Schneider Electric SCL Series ID=1037 <=UPS 03.1 | ||
| Schneider Electric SCL Series ID=1029 <=UPS 02.5 | ||
| Schneider Electric SMC Series ID=1018 <=UPS 04.2 | ||
| Schneider Electric SMTL Series ID=1026 <=UPS 02.9 | ||
| Schneider Electric SCL Series ID=1030 <=UPS 02.5 | ||
| Schneider Electric SCL Series ID=1036 <=UPS 02.5 | ||
| Schneider Electric SMX Series ID=1031 <=UPS 03.1 |
Timeline
- Mar 10, 2022 CVE ID Reserved
- Mar 12, 2022 CVE Published