Generex Cs141 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Generex Cs141 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2022-47190 — CVSS 10.0 (critical): Generex UPS CS141 below 2.06 version, could allow a remote attacker to upload a firmware file containing a webshell that could allow him to…
CVE-2022-42457 — CVSS 9.1 (critical): Generex CS141 through 2.10 allows remote command execution by administrators via a web interface that reaches run_update in…
CVE-2022-47192 — CVSS 8.8 (high): Generex UPS CS141 below 2.06 version, could allow a remote attacker to upload a backup file containing a modified "users.json" to the web…
CVE-2022-47188 — CVSS 7.5 (high): There is an arbitrary file reading vulnerability in Generex UPS CS141 below 2.06 version. An attacker, making use of the default…
CVE-2022-47186 — CVSS 7.5 (high): There is an unrestricted upload of file vulnerability in Generex CS141 below 2.06 version. An attacker could upload and/or delete any type…
CVE-2022-47189 — CVSS 7.5 (high): Generex UPS CS141 below 2.06 version, allows an attacker toupload a firmware file containing an incorrect configuration, in order to…
CVE-2020-11420 — CVSS 6.5 (medium): UPS Adapter CS141 before 1.90 allows Directory Traversal. An attacker with Admin or Engineer login credentials could exploit the…
CVE-2022-47187 — CVSS 5.3 (medium): There is a file upload XSS vulnerability in Generex CS141 below 2.06 version. The web application allows file uploading, making it possible…
CVE-2022-47191 — CVSS 4.3 (medium): Generex UPS CS141 below 2.06 version, could allow a remote attacker to upload a firmware file containing a file with modified permissions…