Chiu Tsungshu

**Name of the Vulnerable Software and Affected Versions** HGiga PowerStation (affected versions not specified) **Description** The issue is related to a lack of authentication for a critical function due to insufficient protection of service data, which can allow a remote attacker to gain unauthorized access to protected information, execute arbitrary code, or cause a denial of service. An unauthenticated remote attacker can exploit this to obtain the administrator's credential, which can then be used to login to PowerStation or Secure Shell to achieve remote code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HGiga PowerStation (affected versions not specified) **Description** The issue is related to insufficient filtering for user input in the remote management function of the system, allowing an authenticated remote attacker to inject and execute arbitrary system commands. This could enable the attacker to perform arbitrary system operations or disrupt service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.