Remote Code Execution Vulnerability in Generex UPS CS141 (Versions below 2.06)

Remote Code Execution Vulnerability in Generex UPS CS141 (Versions below 2.06)

CVE-2022-47192 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Generex UPS CS141 below 2.06 version, could allow a remote attacker to upload a backup file containing a modified "users.json" to the web server of the device, allowing him to replace the administrator password.

Learn more about our Web App Pen Testing.