// For flags

CVE-2018-9281

 

Severity Score

8.8
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

An issue was discovered on Eaton UPS 9PX 8000 SP devices. The administration panel is vulnerable to a CSRF attack on the change-password functionality. This vulnerability could be used to force a logged-in administrator to perform a silent password update. The affected forms are also vulnerable to Reflected Cross-Site Scripting vulnerabilities. This flaw could be triggered by driving an administrator logged into the Eaton application to a specially crafted web page. This attack could be done silently.

Se ha descubierto un problema en dispositivos Eaton UPS 9PX 8000 SP. El panel de administración es vulnerable a un ataque Cross-Site Request Forgery (CSRF) en la funcionalidad de cambio de contraseña. La vulnerabilidad podría emplearse para forzar a un administrador con su sesión iniciada a realizar una actualización silenciosa de la contraseña. Los formularios afectados también son vulnerables a Cross-Site Scripting (XSS) reflejado. El error podría ser desencadenado conduciendo a un administrador con sesión iniciada en la aplicación Eaton hacia una página web especialmente manipulada. Este ataque podría realizarse de forma silenciosa.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2018-04-04 CVE Reserved
  • 2018-10-24 CVE Published
  • 2023-03-08 EPSS Updated
  • 2024-08-05 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
  • CWE-352: Cross-Site Request Forgery (CSRF)
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Eaton
Search vendor "Eaton"
 9px Ups Firmware
Search vendor "Eaton" for product "9px Ups Firmware"
--
Affected
in Eaton
Search vendor "Eaton"
 9px Ups
Search vendor "Eaton" for product "9px Ups"
--
Safe