2 matches found
Eaton 9PX Insufficiently Protected Credentials (CVE-2018-9280)
An issue was discovered on Eaton UPS 9PX 8000 SP devices. The appliance discloses the SNMP version 3 user's password. The web page displayed by the appliance contains the password in cleartext. Passwords of the read and write users could be retrieved by browsing the source code of the webpage. Th...
CVE-2018-9280
CVE-2018-9280 affects Eaton UPS 9PX 8000 SP devices. The vulnerability stems from the appliance’s web interface disclosing the SNMP v3 user’s password in cleartext on the served page, enabling retrieval by inspecting the page source. Affected component is the web interface that exposes credential...