Multiple vulnerabilities have been discovered in Schneider Electric APC Smart-UPS that could allow for remote code execution. Schneider Electric APC Smart-UPS are devices that protect equipment and provide emergency backup power for mission-critical assets. Successful exploitation of the most severe of these vulnerabilities could allow for remote code execution within the context of the application. Depending on the privileges associated with this application, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
SYSTEMS AFFECTED:
RISK:
Government:
Businesses:
Home users: Low
TECHNICAL SUMMARY:
Multiple vulnerabilities have been discovered in Schneider Electric APC Smart-UPS that could allow for remote code execution. Details of the vulnerabilities are as follows:
Note: To exploit CVE-2022-22805 and CVE2022-22806, an attacker would need to conduct a Man-in-the-Middle attack which would enable them to impersonate Schneider Electric Cloud and push a maliciously crafted firmware to the targeted devices.
Successful exploitation of the most severe of these vulnerabilities could allow for remote code execution within the context of the application. Depending on the privileges associated with this application, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. If this application has been configured to have fewer user rights on the system, exploitation of this vulnerability could have less impact than if it was configured with administrative rights.
RECOMMENDATIONS:
We recommend the following actions be taken:
Apply the Principle of Least Privilege to all systems and services.
REFERENCES:
CVE:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0715
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22805
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22806
HelpNet Security:
https://www.helpnetsecurity.com/2022/03/08/ups-devices-vulnerabilities/
Schneider Electric:
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-067-02