Vulnerability Details CVE-2018-7820
A Credentials Management CWE-255 vulnerability exists in the APC UPS Network Management Card 2 AOS v6.5.6, which could cause Remote Monitoring Credentials to be viewed in plaintext when Remote Monitoring is enabled, and then disabled.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.3%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 5.0
References
Products affected by CVE-2018-7820
-
cpe:2.3:h:schneider-electric:ap9630:-
-
cpe:2.3:h:schneider-electric:ap9631:-
-
cpe:2.3:h:schneider-electric:ap9635:-
-
cpe:2.3:h:schneider-electric:smart-ups_srt_5kva:-
-
cpe:2.3:o:schneider-electric:ap9630_firmware:-
-
cpe:2.3:o:schneider-electric:ap9631_firmware:-
-
cpe:2.3:o:schneider-electric:ap9635_firmware:-
-
cpe:2.3:o:schneider-electric:smart-ups_srt_5kva_firmware:-