← back
CVE-2022-33862

Improper access control mechanism in IPP

CVSS 6.7 MEDIUMEPSS 0.2%CWE-287
IPP software prior to v1.71 is vulnerable to default credential vulnerability. This could lead attackers to identify and access vulnerable systems.
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected products
Eaton · Intelligent Power Protector (IPP)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.eaton.com/content/dam/eaton/company/news-insights/cybersecurity/ETN-VA-2022-1011.pdf