All 9 CVE vulnerabilities found in Intelligent Power manager (IPM), with AI-generated Chinese analysis, references, and POCs.
Vendor: Eaton
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2021-23282 | Stored Cross-site Scripting reported in Intelligent Power Manager v1 CWE-79 | 5.2 | Medium | 2024-11-25 |
| CVE-2021-23280 | Arbitrary File upload CWE-434 | 8.0 | High | 2021-04-13 |
| CVE-2021-23277 | Improper Neutralization of Directives in Dynamically Evaluated Code CWE-95 | 8.3 | High | 2021-04-13 |
| CVE-2021-23281 | Remote Code execution CWE-94 | 10.0 | Critical | 2021-04-13 |
| CVE-2021-23279 | Arbitrary File delete CWE-20 | 8.0 | High | 2021-04-13 |
| CVE-2021-23276 | Improper Neutralization of Special Elements used in an SQL Command CWE-89 | 7.1 | High | 2021-04-13 |
| CVE-2021-23278 | Arbitrary File delete CWE-20 | 8.7 | High | 2021-04-13 |
| CVE-2020-6651 | Command injection via specially crafted file name during config file upload CWE-20 | 8.8 | High | 2020-05-07 |
| CVE-2020-6652 | Incorrect privilege assignment allowing non-admin users to upload config files CWE-266 | 7.8 | High | 2020-05-07 |
All 9 known CVE vulnerabilities affecting Intelligent Power manager (IPM) with full Chinese analysis, references, and POCs where available.