CVE-2024-31856

An attacker with certain MQTT permissions can create malicious messagesto all CyberPower PowerPanel devices. This could result in an attacker injectingSQL syntax, writing arbitrary files to the system, and executing remotecode.