CVE-2022-47190

critical

Description

Generex UPS CS141 below 2.06 version, could allow a remote attacker to upload a firmware file containing a webshell that could allow him to execute arbitrary code as root.

References

https://www.incibe-cert.es/en/early-warning/ics-advisories/update-03032023-multiple-vulnerabilities-generex-ups-cs141

https://www.generex.de/support/changelogs/cs141/2-12

https://www.generex.de/support/changelogs/cs141/page:2

Details

Source: MITRE

Published: 2023-03-31

Updated: 2023-04-06

Type: CWE-434