Vulnerability Details CVE-2023-29413
A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause
Denial-of-Service when accessed by an unauthenticated user on the Schneider UPS Monitor
service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.3%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2023-29413
-
cpe:2.3:a:schneider-electric:apc_easy_ups_online_monitoring_software:2.5-ga
-
cpe:2.3:a:schneider-electric:apc_easy_ups_online_monitoring_software:2.5-ga-01-22320
-
cpe:2.3:a:schneider-electric:easy_ups_online_monitoring_software:2.5-gs
-
cpe:2.3:a:schneider-electric:easy_ups_online_monitoring_software:2.5-gs-01-22320
-
cpe:2.3:o:microsoft:windows_10:-
-
cpe:2.3:o:microsoft:windows_11:-
-
cpe:2.3:o:microsoft:windows_server_2016:-
-
cpe:2.3:o:microsoft:windows_server_2019:-
-
cpe:2.3:o:microsoft:windows_server_2022:-