Apc: >> Powerchute >> 9.0.1.606 Security Vulnerabilities
Improper Input Validation vulnerability exists in PowerChute Business Edition (software V9.0.x and earlier) which could cause remote code execution when a script is executed during a shutdown event.
CVSS Score
8.8
EPSS Score
0.016
Published
2020-08-31
The HTTP service in American Power Conversion (APC) PowerChute uses a default username and password, which allows remote attackers to gain system access.
CVSS Score
9.0
EPSS Score
0.007
Published
2000-12-31