CVE-2024-12442

CVE-2024-12442: Command injection in EnerSys AMPA versions 24.04 through 24.16, inclusive

Vendor Enersys
Product AMPA
Weakness CWE-77
Published May 9, 2025
Last update May 13, 2025

CVSS base score

What the vulnerability does

01Description

EnerSys AMPA versions 24.04 through 24.16, inclusive, are vulnerable to command injection leading to privileged remote shell access.

Key dates

02Disclosure timeline

May 9, 2025 CVE published
May 13, 2025 Record updated