ГлавнаяУязвимости → CVE-2024-32047
9.8критическая

CVE-2024-32047

→ есть в БДУ: BDU:2024-03464 (на русском)
Описание (на английском; русское — в БДУ выше)

Hard-coded credentials for the CyberPower PowerPanel test server can be found in the production code. This might result in an attacker gaining access to the testing or production server.

Затрагиваемое ПО
Cyberpower Powerpanel
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.cisa.gov/news-events/ics-advisories/icsa-24-123-01https://www.cyberpower.com/global/en/product/sku/powerpanel_business_for_windows#downloadshttps://www.cisa.gov/news-events/ics-advisories/icsa-24-123-01https://www.cyberpower.com/global/en/product/sku/powerpanel_business_for_windows#downloads