Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2020/05/22 12:0 a.m.41 views

Eaton Intelligent Power Manager (IPM) < 1.68 Multiple Vulnerabilities

Eaton Intelligent Power Manager IPM v1.67 and prior contain multiple vulnerabilities: - Improper Input Validation on file name during configuration file import functionality allows attackers to perform command injection or code execution via specially crafted file names while uploading the...

8.8CVSS7.9AI score0.02147EPSS
Exploits0References3
ICS
ICS
added 2020/05/12 12:0 a.m.51 views

Eaton Intelligent Power Manager

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Eaton Equipment: Intelligent Power Manager Vulnerabilities: Improper Input Validation, Incorrect Privilege Assignment 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow...

8.8CVSS8.8AI score0.02147EPSS
Exploits0References5
Cvelist
Cvelist
added 2020/05/07 3:58 p.m.38 views

CVE-2020-6652 Incorrect privilege assignment allowing non-admin users to upload config files

Incorrect Privilege Assignment vulnerability in Eaton's Intelligent Power Manager IPM v1.67 & prior allow non-admin users to upload the system configuration files by sending specially crafted requests. This can result in non-admin users manipulating the system configurations via uploading the...

7.8CVSS7.9AI score0.00357EPSS
Exploits0References2
CVE
CVE
added 2020/05/07 3:58 p.m.60 views

CVE-2020-6652

CVE-2020-6652 affects Eaton Intelligent Power Manager (IPM) v1.67 and earlier. The vulnerability is an incorrect privilege assignment that lets non-admin users upload system configuration files by sending specially crafted requests, potentially enabling manipulation of configurations with paramet...

7.8CVSS7.8AI score0.00357EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder