Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CyberPower PowerPanel business Relative Path Traversal
Vulnerability Description
A specially crafted Zip file containing path traversal characters can be imported to the CyberPower PowerPanel server, which allows file writing to the server outside the intended scope, and could allow an attacker to achieve remote code execution.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
相对路径遍历
Vulnerability Title
Cyber Power Systems PowerPanel Business Edition 安全漏洞
Vulnerability Description
Cyber Power Systems PowerPanel Business Edition是美国Cyber Power Systems公司的一套电源管理软件。该软件可自动关闭物理和虚拟基础架构、并监控和管理CyberPower UPS系统和网络连接的PDU(电源分配单元)。 Cyber Power Systems PowerPanel Business Edition 4.9.0及之前版本存在安全漏洞,该漏洞源于包含路径穿越,允许将文件写入预期范围之外的服务器,并可能允许攻击者实现远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A