← back
CVE-2024-32053

CyberPower PowerPanel business Use of Hard-coded Credentials

CVSS 9.8 CRITICALEPSS 0.5%CWE-798
Hard-coded credentials are used by the  CyberPower PowerPanel platform to authenticate to the database, other services, and the cloud. This could result in an attacker gaining access to services with the privileges of a Powerpanel business application.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
CyberPower · PowerPanel business

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.cisa.gov/news-events/ics-advisories/icsa-24-123-01https://www.cyberpower.com/global/en/product/sku/powerpanel_business_for_windows#downloads