Vulnerabilities > Eaton > Intelligent Power Protector > 1.67

DATE CVE VULNERABILITY TITLE RISK
2022-04-19 CVE-2021-23283 Cross-site Scripting vulnerability in Eaton Intelligent Power Protector
Eaton Intelligent Power Protector (IPP) prior to version 1.69 is vulnerable to stored Cross Site Scripting.
network
eaton CWE-79
3.5
2022-04-01 CVE-2021-23288 Cross-site Scripting vulnerability in Eaton Intelligent Power Protector
The vulnerability exists due to insufficient validation of input from certain resources by the IPP software.
2.3
2021-04-13 CVE-2021-23277 Code Injection vulnerability in Eaton products
Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated eval injection vulnerability.
network
low complexity
eaton CWE-94
critical
10.0