March 11, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – Multiple Zoom Products Vulnerabilities
December 13, 2023Rewterz Threat Advisory – Multiple Google Android Vulnerabilities
December 13, 2023Rewterz Threat Advisory – Multiple Zoom Products Vulnerabilities
December 13, 2023Rewterz Threat Advisory – Multiple Google Android Vulnerabilities
December 13, 2023
Severity
Medium
Analysis Summary
CVE-2023-6407
Schneider Electric Easy UPS Online Monitoring Software could allow a local authenticated attacker to traverse directories on the system. An attacker could send a specially crafted request to delete arbitrary files on the system.
Impact
- Data Manipulation
Indicators Of Compromise
CVE
- CVE-2023-6407
Affected Vendors
Schneider Electric
Affected Products
- Schneider Electric Easy UPS Online Monitoring Software Windows 10 2.6-GA-01-23116
- Schneider Electric Easy UPS Online Monitoring Software Windows 11 2.6-GA-01-23116
- Schneider Electric Easy UPS Online Monitoring Software Windows Server 2016 2.6-GA-01-23116
- Schneider Electric Easy UPS Online Monitoring Software Windows Server 2019 2.6-GA-01-23116
- Schneider Electric Easy UPS Online Monitoring Software Windows Server 2022 2.6-GA-01-23116
Remediation
Refer to Schneider Electric Website for patch, upgrade, or suggested workaround information.