Lucene search
+L

282 matches found

CNNVD
CNNVD
added 2022/04/18 12:0 a.m.7 views

Eaton Intelligent Power Manager 跨站脚本漏洞

Eaton Intelligent Power Manager IPM is an intelligent power manager from Eaton Corporation that supports remote monitoring and management of multiple devices in a network from an interface. A security vulnerability exists in Eaton Intelligent Power Manager Infrastructure IPM Infrastructure versio...

5.7CVSS5AI score0.00483EPSS
Exploits0References6
CNNVD
CNNVD
added 2022/04/18 12:0 a.m.7 views

Eaton Intelligent Power Manager 安全漏洞

Eaton Intelligent Power Manager IPM is an intelligent power manager from Eaton Corporation that supports remote monitoring and management of multiple devices in a network from an interface. A security vulnerability exists in Eaton Intelligent Power Manager Infrastructure IPM Infrastructure versio...

8CVSS7.8AI score0.00402EPSS
Exploits0References7
CNNVD
CNNVD
added 2022/04/18 12:0 a.m.8 views

Eaton Intelligent Power Manager 跨站脚本漏洞

Eaton Intelligent Power Manager IPM is an intelligent power manager from Eaton Corporation that supports remote monitoring and management of multiple devices in a network from an interface. A security vulnerability exists in Eaton Intelligent Power Manager Infrastructure IPM Infrastructure versio...

4.8CVSS5AI score0.00405EPSS
Exploits0References6
OSV
OSV
added 2022/04/01 11:15 p.m.5 views

CVE-2021-23287

The vulnerability exists due to insufficient validation of input of certain resources within the IPM software. This issue affects: Intelligent Power Manager IPM 1 versions prior to 1.70...

5.4CVSS5.8AI score0.00444EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/04/01 10:17 p.m.29 views

CVE-2021-23287 Security issues in Intelligent Power Manager (IPM 1)

The vulnerability exists due to insufficient validation of input of certain resources within the IPM software. This issue affects: Intelligent Power Manager IPM 1 versions prior to 1.70...

5.6CVSS5.7AI score0.00444EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/04/01 12:0 a.m.7 views

Eaton Intelligent Power Manager 跨站脚本漏洞

Eaton Intelligent Power Manager IPM is an intelligent power manager from Eaton Corporation that supports remote monitoring and management of multiple devices in a network from an interface. A security vulnerability exists in Intelligent Power Manager IPM 1 versions prior to 1.70 that stems from...

5.6CVSS5.8AI score0.00444EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/04/29 12:0 a.m.50 views

Eaton Intelligent Power Manager (IPM) < 1.69 Multiple Vulnerabilities (ETN-VA-2021-1000)

The version of Eaton Intelligent Power Manager installed on the remote Windows host is prior to 1.69. It is, therefore, affected multiple vulnerabilities: - Eaton Intelligent Power Manager IPM prior to 1.69 is vulnerable to unauthenticated arbitrary file delete vulnerability induced due to improp...

10CVSS8.8AI score0.2709EPSS
Exploits0References7
CNVD
CNVD
added 2021/04/21 12:0 a.m.8 views

Eaton Intelligent Power Manager Eval Injection Vulnerability

Eaton Intelligent Power Manager IPM is an intelligent power manager from Eaton Corporation that supports remote monitoring and management of multiple devices in a network from an interface. An Eval injection vulnerability exists in Eaton IPM versions prior to 1.69. The vulnerability arises becaus...

10CVSS7.3AI score0.00962EPSS
Exploits0References1
ICS
ICS
added 2021/04/20 12:0 a.m.178 views

Eaton Intelligent Power Manager

1. EXECUTIVE SUMMARY CVSS v3 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Eaton Equipment: Intelligent Power Manager IPM Vulnerabilities: SQL Injection, Eval Injection, Improper Input Validation, Unrestricted Upload of File with Dangerous Type, Code Injection 2. RISK...

10CVSS10AI score0.2709EPSS
Exploits0References4
CNVD
CNVD
added 2021/04/19 12:0 a.m.7 views

Eaton Intelligent Power Manager SQL Injection Vulnerability

Eaton Intelligent Power Manager IPM is an intelligent power manager from Eaton Corporation that supports remote monitoring and management of multiple devices in a network from an interface. An SQL injection vulnerability exists in Eaton Intelligent Power Manager versions prior to 1.69, which is...

8.8CVSS7.6AI score0.00792EPSS
Exploits0References1
CNVD
CNVD
added 2021/04/19 12:0 a.m.9 views

Eaton Intelligent Power Manager Arbitrary File Upload Vulnerability

Eaton Intelligent Power Manager IPM is an intelligent power manager from Eaton Corporation that supports remote monitoring and management of multiple devices in a network from an interface. An arbitrary file upload vulnerability exists in Eaton Intelligent Power Manager IPM versions prior to 1.69...

9.9CVSS7.5AI score0.00872EPSS
Exploits0References1
CNVD
CNVD
added 2021/04/19 12:0 a.m.7 views

Eaton Intelligent Power Manager Arbitrary File Deletion Vulnerability

Eaton Intelligent Power Manager IPM is an intelligent power manager from Eaton Corporation that supports remote monitoring and management of multiple devices in a network from an interface. An arbitrary file deletion vulnerability exists in Eaton Intelligent Power Manager versions prior to 1.69,...

10CVSS6.9AI score0.2709EPSS
Exploits0References1
CNVD
CNVD
added 2021/04/19 12:0 a.m.10 views

Eaton Intelligent Power Manager Remote Code Execution Vulnerability

Eaton Intelligent Power Manager IPM is an intelligent power manager from Eaton Corporation that supports remote monitoring and management of multiple devices in a network from an interface. A remote code execution vulnerability exists in Eaton Intelligent Power Manager versions prior to 1.69, whi...

10CVSS7.7AI score0.02235EPSS
Exploits0References1
CNVD
CNVD
added 2021/04/19 12:0 a.m.13 views

Eaton Intelligent Power Manager Arbitrary File Deletion Vulnerability (CNVD-2021-31672)

Eaton Intelligent Power Manager IPM is an intelligent power manager from Eaton Corporation that supports remote monitoring and management of multiple devices in a network from an interface. An arbitrary file deletion vulnerability exists in Eaton Intelligent Power Manager versions prior to 1.69,...

9.6CVSS6.9AI score0.01015EPSS
Exploits0References1
NVD
NVD
added 2021/04/13 7:15 p.m.24 views

CVE-2021-23281

Eaton Intelligent Power Manager IPM prior to 1.69 is vulnerable to unauthenticated remote code execution vulnerability. IPM software does not sanitize the date provided via coverterCheckList action in metadriversrv.js class. Attackers can send a specially crafted packet to make IPM connect to rou...

10CVSS0.02235EPSS
Exploits0References1
NVD
NVD
added 2021/04/13 7:15 p.m.17 views

CVE-2021-23280

Eaton Intelligent Power Manager IPM prior to 1.69 is vulnerable to authenticated arbitrary file upload vulnerability. IPM’s mapssrv.js allows an attacker to upload a malicious NodeJS file using uploadBackgroud action. An attacker can upload a malicious code or execute any command using a speciall...

9.9CVSS0.00872EPSS
Exploits0References1
OSV
OSV
added 2021/04/13 7:15 p.m.5 views

CVE-2021-23276

Eaton Intelligent Power Manager IPM prior to 1.69 is vulnerable to authenticated SQL injection. A malicious user can send a specially crafted packet to exploit the vulnerability. Successful exploitation of this vulnerability can allow attackers to add users in the data base...

8.8CVSS7.3AI score0.00792EPSS
Exploits0References1
NVD
NVD
added 2021/04/13 7:15 p.m.13 views

CVE-2021-23277

Eaton Intelligent Power Manager IPM prior to 1.69 is vulnerable to unauthenticated eval injection vulnerability. The software does not neutralize code syntax from users before using in the dynamic evaluation call in loadUserFile function under scripts/libs/utils.js. Successful exploitation can...

10CVSS0.00962EPSS
Exploits0References1
OSV
OSV
added 2021/04/13 7:15 p.m.4 views

CVE-2021-0439

In setPowerModeWithHandle of comandroidserverpowerPowerManagerService.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Produc...

7.8CVSS7.2AI score0.00119EPSS
Exploits0References1
Prion
Prion
added 2021/04/13 7:15 p.m.24 views

Remote code execution

Eaton Intelligent Power Manager IPM prior to 1.69 is vulnerable to unauthenticated remote code execution vulnerability. IPM software does not sanitize the date provided via coverterCheckList action in metadriversrv.js class. Attackers can send a specially crafted packet to make IPM connect to rou...

7.5CVSS9.7AI score0.02235EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder