Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
power manager vulnerabilities and exploits
(subscribe to this query)
9.6
CVSSv3
CVE-2021-23278
Eaton Intelligent Power Manager (IPM) before 1.69 is vulnerable to authenticated arbitrary file delete vulnerability induced due to improper input validation at server/maps_srv.js with action removeBackground and server/node_upgrade_srv.js with action removeFirmware. An attacker ...
9.1
CVSSv3
CVE-2019-16261
Tripp Lite PDUMH15AT 12.04.0053 devices allow unauthenticated POST requests to the /Forms/ directory, as demonstrated by changing the manager or admin password, or shutting off power to an outlet. NOTE: the vendor's position is that a newer firmware version, fixing this vuln...
Tripplite Pdumh15at Firmware 12.04.0053
9
CVSSv3
CVE-2021-45046
It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with...
Apache Log4j 2.0
Apache Log4j
Intel Oneapi -
Intel Audio Development Kit -
Intel Datacenter Manager -
Intel System Debugger -
Intel Secure Device Onboard -
Intel Sensor Solution Firmware Development Kit -
Intel Computer Vision Annotation Tool -
Intel Genomics Kernel Library -
Intel System Studio -
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
195 Github repositories
9 Articles
8.8
CVSSv3
CVE-2021-44142
The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions before 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow ou...
Samba Samba
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 21.10
Synology Diskstation Manager
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux For Scientific Computing 7.0
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Resilient Storage 7.0
Redhat Enterprise Linux For Power Little Endian 7.0
Redhat Enterprise Linux For Power Big Endian 7.0
Redhat Enterprise Linux For Ibm Z Systems 7.0
Redhat Virtualization Host 4.0
Redhat Enterprise Linux 8.0
3 Github repositories
1 Article
8.8
CVSSv3
CVE-2021-23276
Eaton Intelligent Power Manager (IPM) before 1.69 is vulnerable to authenticated SQL injection. A malicious user can send a specially crafted packet to exploit the vulnerability. Successful exploitation of this vulnerability can allow malicious users to add users in the data base...
8.8
CVSSv3
CVE-2020-7547
A CWE-284: Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) that could allow a user the ability to perform actions via the web interface at a higher pr...
Schneider-electric Ecostruxure Energy Expert 2.0
Schneider-electric Ecostruxure Power Monitoring Expert 9.0
Schneider-electric Power Manager 1.1
Schneider-electric Power Manager 1.2
Schneider-electric Power Manager 1.3
Schneider-electric Ecostruxure Power Monitoring Expert 8.0
Schneider-electric Ecostruxure Power Monitoring Expert 7.0
Schneider-electric Powerscada Operation With Advanced Reporting And Dashboards 9.0
Schneider-electric Powerscada Expert With Advanced Reporting And Dashboards 8.0
8.8
CVSSv3
CVE-2020-3111
A vulnerability in the Cisco Discovery Protocol implementation for the Cisco IP Phone could allow an unauthenticated, adjacent malicious user to remotely execute code with root privileges or cause a reload of an affected IP phone. The vulnerability is due to missing checks when p...
Cisco Ip Conference Phone 7832 Firmware
Cisco Ip Conference Phone 7832 With Multiplatform Firmware
Cisco Ip Conference Phone 8832 Firmware
Cisco Ip Conference Phone 8832 With Multiplatform Firmware
Cisco Ip Phone 6821 Firmware
Cisco Ip Phone 6841 Firmware
Cisco Ip Phone 6851 Firmware
Cisco Ip Phone 6861 Firmware
Cisco Ip Phone 6871 Firmware
Cisco Ip Phone 7811 Firmware
Cisco Ip Phone 7811 With Multiplatform Firmware
Cisco Ip Phone 7821 Firmware
Cisco Ip Phone 7821 With Multiplatform Firmware
Cisco Ip Phone 7841 Firmware
Cisco Ip Phone 7841 With Multiplatform Firmware
Cisco Ip Phone 7861 Firmware
Cisco Ip Phone 7861 With Multiplatform Firmware
Cisco Ip Phone 8811 Firmware
Cisco Ip Phone 8811 With Multiplatform Firmware
Cisco Ip Phone 8841 Firmware
Cisco Ip Phone 8841 With Multiplatform Firmware
Cisco Ip Phone 8851 Firmware
1 Article
8.8
CVSSv3
CVE-2015-0104
IBM Tivoli IT Asset Management for IT, Tivoli Service Request Manager, and Change and Configuration Management Database 7.1 up to and including 7.1.1.8 and 7.2 and Maximo Asset Management and Maximo Industry Solutions 7.1 up to and including 7.1.1.8, 7.5 prior to 7.5.0.7 IFIX003,...
Ibm Maximo Asset Management 7.1.1
Ibm Maximo Asset Management 7.1.1.2
Ibm Maximo For Life Sciences 7.1
Ibm Maximo For Oil And Gas 7.1
Ibm Tivoli Service Request Manager 7.1
Ibm Maximo Asset Management 7.1.1.6
Ibm Maximo Asset Management 7.1.1.7
Ibm Maximo Asset Management 7.1.1.8
Ibm Maximo Asset Management Essentials 7.1
Ibm Change And Configuration Management Database 7.1
Ibm Change And Configuration Management Database 7.2
Ibm Maximo Asset Management 7.1
Ibm Maximo For Transportation 7.1
Ibm Maximo For Utilities 7.1
Ibm Tivoli Asset Management For It 7.1
Ibm Tivoli Asset Management For It 7.2
Ibm Maximo Asset Management 7.1.1.1
Ibm Maximo Asset Management 7.1.1.5
Ibm Maximo For Government 7.1
Ibm Maximo For Nuclear Power 7.1
Ibm Tivoli Service Request Manager 7.2
1 EDB exploit
8.2
CVSSv3
CVE-2020-4409
IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote malicious user to conduct phishing attacks, using a tabnabbing attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to redirect a user to a malicio...
Ibm Control Desk 7.6.1
Ibm Control Desk 7.6.1.1
Ibm Maximo Asset Configuration Manager 7.6.6
Ibm Maximo Asset Configuration Manager 7.6.7
Ibm Maximo Asset Configuration Manager 7.6.7.1
Ibm Maximo Asset Health Insights 7.6.1
Ibm Maximo Asset Health Insights 7.6.1.1
Ibm Maximo Asset Management
Ibm Maximo Asset Management Scheduler 7.6.7
Ibm Maximo Asset Management Scheduler 7.6.7.1
Ibm Maximo Asset Management Scheduler 7.6.7.3
Ibm Maximo Asset Management Scheduler Plus 7.6.7
Ibm Maximo Asset Management Scheduler Plus 7.6.7.1
Ibm Maximo Asset Management Scheduler Plus 7.6.7.3
Ibm Maximo Calibration 7.6
Ibm Maximo Enterprise Adapter 7.6
Ibm Maximo Enterprise Adapter 7.6.1
Ibm Maximo Equipment Maintenance Assistant -
Ibm Maximo For Aviation 7.6.6
Ibm Maximo For Aviation 7.6.7
Ibm Maximo For Aviation 7.6.8
Ibm Maximo For Life Sciences 7.6
8
CVSSv3
CVE-2021-23286
Eaton Intelligent Power Manager Infrastructure (IPM Infrastructure) version 1.5.0plus205 and all prior versions are vulnerable to CSV Formula Injection. This issue affects: Eaton Intelligent Power Manager Infrastructure (IPM Infrastructure) all version 1.5.0plus205 and prior vers...
Eaton Intelligent Power Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »