Eaton: >> Intelligent Power Protector >> 1.68 Security Vulnerabilities
Eaton Intelligent Power Protector (IPP) prior to version 1.69 is vulnerable to stored Cross Site Scripting. The vulnerability exists due to insufficient validation of user input and improper encoding of the output for certain resources within the IPP software.
CVSS Score
5.2
EPSS Score
0.002
Published
2022-04-19
The vulnerability exists due to insufficient validation of input from certain resources by the IPP software. The attacker would need access to the local Subnet and an administrator interaction to compromise the system. This issue affects: Intelligent Power Protector versions prior to 1.69.
CVSS Score
5.6
EPSS Score
0.001
Published
2022-04-01