How severe is CVE-2018-7820?

CVE-2018-7820 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2018-7820

9.8CRITICAL

A Credentials Management CWE-255 vulnerability exists in the APC UPS Network Management Card 2 AOS v6.5.6, which could cause Remote Monitoring Credentials to be viewed in plaintext when Remote Monitor

发布于: 9/17/2019更新于: 11/21/2024

描述

A Credentials Management CWE-255 vulnerability exists in the APC UPS Network Management Card 2 AOS v6.5.6, which could cause Remote Monitoring Credentials to be viewed in plaintext when Remote Monitoring is enabled, and then disabled.

AI分析AI驱动

受影响产品

schneider-electricap9630_firmware

schneider-electricap9630

schneider-electricsmart-ups_srt_5kva_firmware

schneider-electricsmart-ups_srt_5kva

schneider-electricap9631_firmware

schneider-electricap9631

schneider-electricap9635_firmware

schneider-electricap9635

参考资料

https://www.apc.com/salestools/CCON-BFQMXC/CCON-BFQMXC_R0_EN.pdf
Vendor Advisory
https://www.apc.com/salestools/CCON-BFQMXC/CCON-BFQMXC_R0_EN.pdf
Vendor Advisory