Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-6407


A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause arbitrary file deletion upon service restart when accessed by a local and low-privileged attacker.


Published

2023-12-14T05:15:14.407

Last Modified

2024-11-21T08:43:47.523

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.3 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-22

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application schneider-electric easy_ups_online_monitoring_software < 2.6-ga-01-23248 Yes
Operating System microsoft windows_10_1507 - No
Operating System microsoft windows_10_1507 - No
Operating System microsoft windows_11_21h2 - No
Operating System microsoft windows_11_21h2 - No
Operating System microsoft windows_server_2016 - No
Operating System microsoft windows_server_2019 - No
Operating System microsoft windows_server_2022 - No

References