CVE-2024-32053

Summary

Hard-coded credentials are used by the  CyberPower PowerPanel

platform to authenticate to the database, other services, and the cloud. This could result in an attacker gaining access to services with the privileges of a Powerpanel business application.

Affected Software

VendorProductVersion RangeStatus
CyberPowerPowerPanel business0 < 4.9.0affected

Weaknesses

  • CWE-798: CWE-798

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

CVE Program Container

Additional References

References