Known Vulnerabilities for products from Apc
Listed below are 14 of the newest known vulnerabilities associated with the vendor "Apc".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Apc can be found at device.report : Apc
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-7526 json | Improper Input Validation vulnerability exists in PowerChute Business Edition (software V9.0.x and earlier) which could cause... | 8.8 - HIGH | 2020-08-31 | 2020-09-04 |
| CVE-2011-4263 json | Cross-site scripting (XSS) vulnerability in Schneider Electric PowerChute Business Edition before 8.5 allows remote attackers... | Not Provided | 2011-12-07 | 2026-04-29 |
| CVE-2009-4406 json | Cross-site scripting (XSS) vulnerability in Forms/login1 in American Power Conversion (APC) Switched Rack PDU AP7932 B2, runn... | Not Provided | 2009-12-23 | 2026-04-23 |
| CVE-2009-1798 json | Multiple cross-site scripting (XSS) vulnerabilities on the Network Management Card (NMC) on American Power Conversion (APC) S... | Not Provided | 2009-12-28 | 2026-04-23 |
| CVE-2009-1797 json | Multiple cross-site request forgery (CSRF) vulnerabilities on the Network Management Card (NMC) on American Power Conversion ... | Not Provided | 2009-12-28 | 2026-04-23 |
| CVE-2007-6226 json | The American Power Conversion (APC) AP7932 0u 30amp Switched Rack Power Distribution Unit (PDU), with rpdu 3.5.5 and aos 3.5.... | Not Provided | 2007-12-04 | 2026-04-23 |
| CVE-2005-4326 json | The web interface for American Power Conversion (APC) PowerChute Network Shutdown performs all communication in cleartext (ba... | Not Provided | 2005-12-17 | 2025-04-03 |
| CVE-2004-2046 json | Unknown vulnerability in APC PowerChute Business Edition 6.0 through 7.0.1 allows remote attackers to cause a denial of servi... | Not Provided | 2004-12-31 | 2025-04-03 |
| CVE-2004-0311 json | American Power Conversion (APC) Web/SNMP Management SmartSlot Card 3.0 through 3.0.3 and 3.21 are shipped with a default pass... | Not Provided | 2004-11-23 | 2025-04-03 |
| CVE-2003-0099 json | Multiple buffer overflows in apcupsd before 3.8.6, and 3.10.x before 3.10.5, may allow attackers to cause a denial of service... | Not Provided | 2003-03-03 | 2025-04-03 |
| CVE-2002-1924 json | PowerChute plus 5.0.2 creates a "Pwrchute" directory during installation that is shared and world writeable, which could allo... | Not Provided | 2002-12-31 | 2025-04-03 |
| CVE-2001-0564 json | APC Web/SNMP Management Card prior to Firmware 310 only supports one telnet connection, which allows a remote attacker to cre... | Not Provided | 2001-08-22 | 2025-04-03 |
| CVE-2001-0040 json | APC UPS daemon, apcupsd, saves its process ID in a world-writable file, which allows local users to kill an arbitrary process... | Not Provided | 2001-02-16 | 2025-04-03 |
| CVE-2000-1242 json | The HTTP service in American Power Conversion (APC) PowerChute uses a default username and password, which allows remote atta... | Not Provided | 2000-12-31 | 2025-04-03 |
Known software with vulnerabilities from Apc
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Apc | 1500 | - |
| Hardware | Apc | 2200 | - |
| Hardware | Apc | 3000 | - |
| Hardware | Apc | 700 | - |
| Hardware | Apc | Ap9606 | - |
| Application | Apc | Apcupsd | - |
| Application | Apc | Powerchute | - |
| Application | Apc | Powerchute Network Shutdown | - |
| Hardware | Apc | Smart-ups 2200 | - |
| Application | Apc | Switched Rack Pdu Firmware | - |