Tinycontrol多款产品 安全漏洞

Tinycontrol tcPDU is a product of the Polish company Tinycontrol. Tinycontrol tcPDU is a network distribution unit. Tinycontrol LAN Controllers LK3.5 is a device for remote monitoring and control of environmental parameters. Tinycontrol LAN Controllers LK3.9 is also a device for remote monitoring...

EUVD-2007-6194

Malware in sbrugna...

EUVD-2021-9945

Malicious code in bioql PyPI...

Sentry Switched CDU Bruteforce Login Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Sentry Switched CDU Bruteforce Login Utility', 'Description' = % This module scans for ServerTech's Sentry Switched CDU Cabinet Power Distributio...

ATEN International PE6208 安全漏洞

The ATEN International PE6208 is a power distribution unit from China-based ATEN Automation Technology ATEN International. A security vulnerability exists in the ATEN International PE6208 version 2.3.228, version 2.4.232, which originates from incorrect access control in the log management functi...

CVE-2023-3262

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier uses hard-coded credentials for all interactions with the internal Postgres database.A malicious agent with the ability to execute operating system commands on the device can leverage this vulnerability to read, modify, or...

ATEN International PE8108 跨站请求伪造漏洞

The ATEN International PE8108 is an intelligent PDU from ATEN International. A security vulnerability exists in ATEN International PE8108 version 2.4.232, which is susceptible to Cross Site Request Forgery CSRF attacks...

ATEN International PE8108 安全漏洞

The ATEN International PE8108 is an intelligent PDU from China-based ATEN International. A security vulnerability exists in ATEN International PE8108 version 2.4.232, which stems from incorrect access control...

ATEN International PE8108 安全漏洞

The ATEN International PE8108 is an intelligent PDU from China-based ATEN International. A security vulnerability exists in ATEN International PE8108 version 2.4.232, which stems from incorrect access control...

PT-2022-20957 · Dataprobe · Dataprobe Iboot Pdu

Name of the Vulnerable Software and Affected Versions: Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 Description: The affected product exposes sensitive data concerning the device. Recommendations: For versions prior to 1.42.06162022, update to version 1.42.06162022 or later to resolve t...

CVE-2022-33174

Power Distribution Units running on Powertek firmware multiple brands before 3.30.30 allows remote authorization bypass in the web interface. To exploit the vulnerability, an attacker must send an HTTP packet to the data retrieval interface /cgi/getparam.cgi with the tmpToken cookie set to an emp...

Powertek PDU 安全漏洞

Powertek, a company that manufactures data center-grade intelligent PDUs power distribution units, or heavy-duty power cords for server racks, has an authentication bypass vulnerability that can be exploited by an attacker to bypass active session authorization checks. It can then be used to gain...

CVE-2021-22815

A CWE-200: Information Exposure vulnerability exists which could cause the troubleshooting archive to be accessed. Affected Products: 1-Phase Uninterruptible Power Supply UPS using NMC2 including Smart-UPS, Symmetra, and Galaxy 3500 with Network Management Card 2 NMC2: AP9630/AP9630CH/AP9630J,...

CVE-2021-22811

CVE-2021-22811 is a cross-site scripting vulnerability in Schneider Electric NMC/NMC2/NMC3 web interfaces. The issue could permit arbitrary script execution when a privileged user accesses a vulnerable web page or when a malicious URL crafted for the NMC is used. Affected products span multiple S...

Sentry Switched CDU Bruteforce Login Utility

This module scans for ServerTech's Sentry Switched CDU Cabinet Power Distribution Unit web login portals, and performs login brute force to identify valid credentials. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...

CVE-2007-6226

The American Power Conversion APC AP7932 0u 30amp Switched Rack Power Distribution Unit PDU, with rpdu 3.5.5 and aos 3.5.6, allows remote attackers to bypass authentication and obtain login access by making a login attempt while a different client is logged in, and then resubmitting the login...