Vulnerabilities > Eaton > Intelligent Power Manager > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-04-18 CVE-2021-23285 Cross-site Scripting vulnerability in Eaton Intelligent Power Manager
Eaton Intelligent Power Manager Infrastructure (IPM Infrastructure) version 1.5.0plus205 and all prior versions are vulnerable to reflected Cross-site Scripting vulnerability.
network
low complexity
eaton CWE-79
4.8
2022-04-01 CVE-2021-23287 Cross-site Scripting vulnerability in Eaton Intelligent Power Manager 1.6/1.67/1.69
The vulnerability exists due to insufficient validation of input of certain resources within the IPM software.
network
low complexity
eaton CWE-79
5.4