Rewterz Threat Advisory – Multiple Zoom Products Vulnerabilities

December 13, 2023

Rewterz Threat Advisory – Multiple Google Android Vulnerabilities

December 13, 2023

Rewterz Threat Advisory – ICS: Schneider Electric Easy UPS Online Monitoring Software Vulnerability

December 13, 2023

Severity

Medium

Analysis Summary

CVE-2023-6407

Schneider Electric Easy UPS Online Monitoring Software could allow a local authenticated attacker to traverse directories on the system. An attacker could send a specially crafted request to delete arbitrary files on the system.

Impact

Data Manipulation

Indicators Of Compromise

CVE

CVE-2023-6407

Affected Vendors

Schneider Electric

Affected Products

Schneider Electric Easy UPS Online Monitoring Software Windows 10 2.6-GA-01-23116
Schneider Electric Easy UPS Online Monitoring Software Windows 11 2.6-GA-01-23116
Schneider Electric Easy UPS Online Monitoring Software Windows Server 2016 2.6-GA-01-23116
Schneider Electric Easy UPS Online Monitoring Software Windows Server 2019 2.6-GA-01-23116
Schneider Electric Easy UPS Online Monitoring Software Windows Server 2022 2.6-GA-01-23116

Remediation

Refer to Schneider Electric Website for patch, upgrade, or suggested workaround information.

Schneider Electric Website

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – Multiple Zoom Products Vulnerabilities

Rewterz Threat Advisory – Multiple Google Android Vulnerabilities

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.