Debian Apcupsd vulnerabilities

5 known vulnerabilities affecting debian/apcupsd.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1LOW3

Vulnerabilities

Page 1 of 1
CVE-2019-12585LOWCVSS 9.82019
CVE-2019-12585 [CRITICAL] CVE-2019-12585: apcupsd - Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products... Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an Arbitrary Command Execution issue in apcupsd_status.php. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved
debian
CVE-2019-12584LOWCVSS 6.12019
CVE-2019-12584 [MEDIUM] CVE-2019-12584: apcupsd - Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products... Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an XSS issue in apcupsd_status.php. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved
debian
CVE-2017-7884LOWCVSS 8.42017
CVE-2017-7884 [HIGH] CVE-2017-7884: apcupsd - In Adam Kropelin adk0212 APC UPS Daemon through 3.14.14, the default installatio... In Adam Kropelin adk0212 APC UPS Daemon through 3.14.14, the default installation of APCUPSD allows a local authenticated, but unprivileged, user to run arbitrary code with elevated privileges by replacing the service executable apcupsd.exe with a malicious executable that will run with SYSTEM privileges at startup. This occurs because of "RW NT AUTHORITY\Authenticate
debian
CVE-2003-0098CRITICALCVSS 10.0fixed in apcupsd 3.8.5-1.2 (bookworm)2003
CVE-2003-0098 [CRITICAL] CVE-2003-0098: apcupsd - Unknown vulnerability in apcupsd before 3.8.6, and 3.10.x before 3.10.5, allows ... Unknown vulnerability in apcupsd before 3.8.6, and 3.10.x before 3.10.5, allows remote attackers to gain root privileges, possibly via format strings in a request to a slave server. Scope: local bookworm: resolved (fixed in 3.8.5-1.2) bullseye: resolved (fixed in 3.8.5-1.2) forky: resolved (fixed in 3.8.5-1.2) sid: resolved (fixed in 3.8.5-1.2) trixie: resolved (f
debian
CVE-2003-0099HIGHCVSS 7.2fixed in apcupsd 3.8.5-1.2 (bookworm)2003
CVE-2003-0099 [HIGH] CVE-2003-0099: apcupsd - Multiple buffer overflows in apcupsd before 3.8.6, and 3.10.x before 3.10.5, may... Multiple buffer overflows in apcupsd before 3.8.6, and 3.10.x before 3.10.5, may allow attackers to cause a denial of service or execute arbitrary code, related to usage of the vsprintf function. Scope: local bookworm: resolved (fixed in 3.8.5-1.2) bullseye: resolved (fixed in 3.8.5-1.2) forky: resolved (fixed in 3.8.5-1.2) sid: resolved (fixed in 3.8.5-1.2) trixie: r
debian
Debian Apcupsd vulnerabilities | cvebase