When adding a remote backup location, an authenticated user can pass arbitrary OS commands through the username field. The username is passed without sanitization into CMD running as NT/Authority System. An authenticated attacker can leverage this vulnerability to execute arbitrary code with system-level access to the CyberPower PowerPanel Enterprise server.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:HCyberpower Powerpanel Server
APPCyberpower< 2.6.9
Powiązane podatności
An authentication bypass exists on CyberPower PowerPanel Enterprise by failing to sanitize meta-characters fro...
A non-feature complete authentication mechanism exists in the production application allowing an attacker to b...
The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier is vulnerable to command injection v...
The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier contains a buffer overflow vulnerabi...
The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier uses hard-coded credentials for all ...