CVE-2024-34025

CVSS V2 None CVSS V3 None
Description
CyberPower PowerPanel business application code contains a hard-coded set of authentication credentials. This could result in an attacker bypassing authentication and gaining administrator privileges.
Overview
  • CVE ID
  • CVE-2024-34025
  • Assigner
  • icscert
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-05-15T19:17:37.188Z
  • Last Modified Date
  • 2024-06-04T17:41:18.194Z
Weakness Enumerations
CWE URL
CWE-259 http://cwe.mitre.org/data/definitions/259.html
References
Reference URL Reference Tags
https://www.cisa.gov/news-events/ics-advisories/icsa-24-123-01
https://www.cyberpower.com/global/en/product/sku/powerpanel_business_for_windows#downloads
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2024-34025
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34025
History
Created Old Value New Value Data Type Notes
2024-06-26 14:24:04 Added to TrackCVE