Lucene search

PRIOn knowledge basePRION:CVE-2023-25131

HistoryApr 24, 2023 - 10:15 a.m.

Default credentials

2023-04-2410:15:00

PRIOn knowledge base

www.prio-n.com

default credentials

powerpanel business

remote attack

9.5 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.0%

JSON

Use of default password vulnerability in PowerPanel Business Local/Remote for Windows v4.8.6 and earlier, PowerPanel Business Management for Windows v4.8.6 and earlier, PowerPanel Business Local/Remote for Linux 32bit v4.8.6 and earlier, PowerPanel Business Local/Remote for Linux 64bit v4.8.6 and earlier, PowerPanel Business Management for Linux 32bit v4.8.6 and earlier, PowerPanel Business Management for Linux 64bit v4.8.6 and earlier, PowerPanel Business Local/Remote for MacOS v4.8.6 and earlier, and PowerPanel Business Management for MacOS v4.8.6 and earlier allows remote attackers to log in to the server directly to perform administrative functions. Upon installation or upon first login, the application does not ask the user to change the ‘admin’ password.

CPENameOperatorVersion
powerpanelle4.8.6
powerpanelle4.8.6
powerpanelle4.8.6
powerpanelle4.8.6

Name	Operator	Version
powerpanel	le	4.8.6
powerpanel	le	4.8.6
powerpanel	le	4.8.6
powerpanel	le	4.8.6

References

www.cyberpower.com/global/en/product/sku/powerpanel_business_for_linux

www.cyberpower.com/global/en/product/sku/powerpanel_business_for_mac

www.cyberpower.com/global/en/product/sku/powerpanel_business_for_virtual_machine

www.cyberpower.com/global/en/product/sku/powerpanel_business_for_windows

zuso.ai/Advisory/