CVE-2026-22618

A security misconfiguration was identified in Eaton Intelligent Power Protector IPP, where an HTTP response header was set with an insecure attribute, potentially exposing users to web‑based attacks. This security issue has been fixed in the latest version of Eaton IPP software which is available...

CVE-2026-22619

Eaton Intelligent Power Protector IPP is affected by insecure library loading in its executable, which could lead to arbitrary code execution by an attacker with access to the software package. This security issue has been fixed in the latest version of Eaton IPP software which is available on th...

CVE-2026-22615

Due to improper input validation in one of the Eaton Intelligent Power Protector IPP XML, it is possible for an attacker with admin privileges and access to the local system to inject malicious code resulting in arbitrary command execution. This security issue has been fixed in the latest version...

CVE-2026-22618

A security misconfiguration was identified in Eaton Intelligent Power Protector IPP, where an HTTP response header was set with an insecure attribute, potentially exposing users to web‑based attacks. This security issue has been fixed in the latest version of Eaton IPP software which is available...

CVE-2026-22615

Due to improper input validation in one of the Eaton Intelligent Power Protector IPP XML, it is possible for an attacker with admin privileges and access to the local system to inject malicious code resulting in arbitrary command execution. This security issue has been fixed in the latest version...

EUVD-2021-10381

Malware in sbrugna...

EUVD-2021-10378

Malware in sbrugna...

EUVD-2021-10379

Malware in sbrugna...

EUVD-2021-10375

Malware in sbrugna...

EUVD-2021-10373

Malware in sbrugna...

EUVD-2021-10371

Malware in sbrugna...

EUVD-2021-10374

Malware in sbrugna...

EUVD-2021-10376

Malware in sbrugna...

EUVD-2020-27799

Malware in sbrugna...

CVE-2021-23282

CVE-2021-23282 affects Eaton Intelligent Power Manager (IPM) versions prior to 1.70. The issue is a stored cross-site scripting vulnerability caused by insufficient validation of input from certain resources in the IPM software. Exploitation requires access to the local subnet and administrator i...

VulnCheck KEV: CVE-2018-12031

Local file inclusion in Eaton Intelligent Power Manager v1.6 allows an attacker to include a file via server/nodeupgradesrv.js directory traversal with the firmware parameter in a downloadFirmware action...

The vulnerability of the Eaton Intelligent Power Manager (IPM) software for monitoring and managing power supplies arises from the lack of protective measures for the website structure. This allows attackers to carry out XSS attacks.

The vulnerability of the Eaton Intelligent Power Manager IPM software for monitoring and managing power supplies is related to the lack of protective measures for the website structure. Exploiting this vulnerability could allow a remote attacker to execute XSS attacks...

Cross site scripting

Eaton Intelligent Power Protector IPP prior to version 1.69 is vulnerable to stored Cross Site Scripting. The vulnerability exists due to insufficient validation of user input and improper encoding of the output for certain resources within the IPP software...

Eaton Intelligent Power Manager 跨站脚本漏洞

Eaton Intelligent Power Manager IPM is an intelligent power manager from Eaton Corporation that supports remote monitoring and management of multiple devices in a network from an interface. A security vulnerability exists in Eaton Intelligent Power Manager Infrastructure IPM Infrastructure versio...

Eaton IPM Arbitrary File Deletion (CVE-2021-23278)

An arbitrary file deletion vulnerability exists in Eaton Intelligent Power Management and Eaton Intelligent Power Protector. The vulnerability is due to missing input validation in mapssrv.js and nodeupgradesrv.js...