漏洞标题
任意文件删除
漏洞描述信息
任意文件删除
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H
漏洞类别
N/A
漏洞标题
Arbitrary File delete
漏洞描述信息
Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated arbitrary file delete vulnerability induced due to improper input validation in meta_driver_srv.js class with saveDriverData action using invalidated driverID. An attacker can send specially crafted packets to delete the files on the system where IPM software is installed.
CVSS信息
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H
漏洞类别
输入验证不恰当
漏洞标题
Eaton Intelligent Power Manager 输入验证错误漏洞
漏洞描述信息
Eaton Intelligent Power Manager(IPM)是美国Eaton公司的一款智能电源管理器,它支持从界面远程监视和管理网络中的多个设备。 Eaton Intelligent Power Manager 存在输入验证错误漏洞,该漏洞源于不正确的输入验证。攻击者可利用该漏洞可以发送专门制作的数据包来删除安装IPM软件的系统上的文件。
CVSS信息
N/A
漏洞类别
输入验证错误