Path Traversal in Abb Cs141
CVE-2020-11420
UPS Adapter CS141 before 1.90 allows Directory Traversal. An attacker with Admin or Engineer login credentials could exploit the vulnerability by manipulating variables that reference files and by doing this achieve access to files and dir…
Vulnerability class: Path Traversal (Directory Traversal)
EPSS: 0.016 (73.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.
Affected products
- Abb Cs141
- Abb Cs141_firmware
- Generex Cs141
- Generex Cs141_firmware
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
- cve@mitre.org (x_refsource_MISC, Release Notes, Vendor Advisory)
- cve@mitre.org (x_refsource_MISC, Release Notes, Vendor Advisory)
Frequently asked questions
- What is CVE-2020-11420?
- CVE-2020-11420 is a medium-severity vulnerability in Abb Cs141, classified under Path Traversal. CVSS score: 6.5/10. Published 2020-04-27.
- How severe is CVE-2020-11420?
- Medium severity. CVSS v3 base score is 6.5 out of 10.