Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Admin password reset via file upload vulnerability in Generex CS141
Vulnerability Description
Generex UPS CS141 below 2.06 version, could allow a remote attacker to upload a backup file containing a modified "users.json" to the web server of the device, allowing him to replace the administrator password.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
Generex UPS Adapter CS141 安全漏洞
Vulnerability Description
Generex UPS Adapter CS141是Generex公司的一款UPS(Uninterruptible Power System,不间断电源)适配器。 Generex UPS Adapter CS141 2.06之前版本存在安全漏洞,该漏洞源于允许攻击者将修改后的users.json文件上传到Web 服务器,从而替换管理员密码。
CVSS Information
N/A
Vulnerability Type
N/A