Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-3265
HistoryAug 14, 2023 - 5:15 a.m.

Hardcoded credentials

2023-08-1405:15:00
PRIOn knowledge base
www.prio-n.com
4
authentication bypass
cyberpower powerpanel
unsantized meta-characters
default credentials

9.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.4%

JSON

An authentication bypass exists on CyberPower PowerPanel Enterprise by failing to sanitize meta-characters from the username, allowing an attacker to login into the application with the default user “cyberpower” by appending a non-printable character.An unauthenticated attacker can leverage this vulnerability to log in to the CypberPower PowerPanel Enterprise as an administrator with hardcoded default credentials.

CPENameOperatorVersion
powerpanel_serverlt2.6.9

Related

cve 1
nvd 1
cvelist 1
nessus 1
thn 1
trellix 2
cve
cve
CVE-2023-3265
2023-08-14 05:15:09
nvd
nvd
CVE-2023-3265
2023-08-14 05:15:09
cvelist
cvelist
CVE-2023-3265
2023-08-14 04:08:06
nessus
nessus
CyberPower PowerPanel Enterprise Authentication Bypass (CVE-2023-3265)
2024-01-29 00:00:00
thn
thn
Multiple Flaws in CyberPower and Dataprobe Products Put Data Centers at Risk
2023-08-12 21:00:00
trellix
trellix
The Threat Lurking in Data Centers – Hack Power Management Systems, Take All the Power
2023-08-12 00:00:00
The Threat Lurking in Data Centers – Hack Power Management Systems, Take All the Power
2023-08-12 00:00:00

9.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.4%

JSON
Related for PRION:CVE-2023-3265
cve1nvd1cvelist1nessus1thn1trellix2