2 matches found
The vulnerability of the device management platform for systems involving heating, ventilation, and air conditioning, lighting, and energy consumption within the Niagara Framework, along with the Niagara Enterprise Security tools for access control and security, stems from incorrect assignment of permissions to critical resources. This allows attackers to gain unauthorized access to protected information, enhance their privileges, and execute arbitrary code.
The vulnerability of the device management platform for heating, ventilation, and air conditioning systems, lighting, and energy consumption control within the Niagara Framework, along with the access control and security measures, is related to the lack of proper protection for the...
CVE-2022-38121
CVE-2022-38121 affects POWERCOM UPSMON PRO. A vulnerability in the UPSMON PRO configuration file stores user passwords in plaintext under a public user directory, enabling a remote attacker with general user privileges to read credentials. The confirmed impact is exposure of usernames and passwor...