CVSS: 7.1EPSS: 6%CPEs: 2EXPL: 0CVE-2007-6226
https://notcve.org/view.php?id=CVE-2007-6226
The American Power Conversion (APC) AP7932 0u 30amp Switched Rack Power Distribution Unit (PDU), with rpdu 3.5.5 and aos 3.5.6, allows remote attackers to bypass authentication and obtain login access by making a login attempt while a different client is logged in, and then resubmitting the login attempt once the other client exits. La American Power Conversion (APC) AP7932 0u 30amp Switched Rack Power Distribution Unit (PDU), con rpdu 3.5.5 y aos 3.5.6, permite a atacantes remotos evitar la validación y obtener acceso de entrada haciendo un intento de entrada mientras un cliente diferente está entrando, y por la tanto reenviar el intento de entrada una vez que el otro cliente exista. • http://securityreason.com/securityalert/3418 http://securitytracker.com/id?1019018 http://www.securityfocus.com/archive/1/484363/100/0/threaded http://www.securityfocus.com/bid/26636 https://exchange.xforce.ibmcloud.com/vulnerabilities/38783 • CWE-287: Improper Authentication •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2005-4326
https://notcve.org/view.php?id=CVE-2005-4326
The web interface for American Power Conversion (APC) PowerChute Network Shutdown performs all communication in cleartext (base64-encoded), which allows remote attackers to sniff authentication credentials. • http://nam-en.apc.com/cgi-bin/nam_en.cfg/php/enduser/std_adp.php?p_faqid=7330 http://securitytracker.com/alerts/2005/Nov/1015250.html https://exchange.xforce.ibmcloud.com/vulnerabilities/23183 •
CVSS: 5.0EPSS: 1%CPEs: 2EXPL: 0CVE-2004-2046
https://notcve.org/view.php?id=CVE-2004-2046
Unknown vulnerability in APC PowerChute Business Edition 6.0 through 7.0.1 allows remote attackers to cause a denial of service via unknown attack vectors. • http://marc.info/?l=bugtraq&m=109061480026378&w=2 http://secunia.com/advisories/12124 http://securitytracker.com/id?1010745 http://www.osvdb.org/8187 http://www.securityfocus.com/bid/10777 https://exchange.xforce.ibmcloud.com/vulnerabilities/16767 •
CVSS: 10.0EPSS: 1%CPEs: 2EXPL: 0CVE-2004-0311
https://notcve.org/view.php?id=CVE-2004-0311
American Power Conversion (APC) Web/SNMP Management SmartSlot Card 3.0 through 3.0.3 and 3.21 are shipped with a default password of TENmanUFactOryPOWER, which allows remote attackers to gain unauthorized access. • http://marc.info/?l=bugtraq&m=107703696631367&w=2 http://marc.info/?l=bugtraq&m=107721020803565&w=2 http://nam-en.apc.com/cgi-bin/nam_en.cfg/php/enduser/std_adp.php?p_faqid=3131&p_created=1077139129 http://www.securityfocus.com/bid/9681 https://exchange.xforce.ibmcloud.com/vulnerabilities/15238 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2003-0099
https://notcve.org/view.php?id=CVE-2003-0099
Multiple buffer overflows in apcupsd before 3.8.6, and 3.10.x before 3.10.5, may allow attackers to cause a denial of service or execute arbitrary code, related to usage of the vsprintf function. Múltiples desbordamientos de búfer en apcupsd anteriores a 3.10.5 pueden permitir a atacantes causar una denegación de servicio o ejecutar código arbitrario, relacionado con el uso de la función vsprintf. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2003-015.0.txt http://securitytracker.com/id?1006108 http://sourceforge.net/project/shownotes.php?release_id=137892 http://sourceforge.net/project/shownotes.php?release_id=137900 http://www.debian.org/security/2003/dsa-277 http://www.iss.net/security_center/static/11491.php http://www.mandriva.com/security/advisories?name=MDKSA-2003:018 http://www.novell.com/linux/security/advisories/2003_022_apcupsd.html http://www.securityfocus.c •