PT-2018-10954 · Eaton · Eaton Intelligent Power Manager

Emreovunc

Published

2018-06-07

Updated

2018-07-27

CVE-2018-12031

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Eaton Intelligent Power Manager version 1.6

Description The issue allows an attacker to perform a local file inclusion via directory traversal in the server/node upgrade srv.js. This is achieved by manipulating the firmware parameter in a downloadFirmware action.

Recommendations For Eaton Intelligent Power Manager version 1.6, consider restricting access to the downloadFirmware action and the firmware parameter to minimize the risk of exploitation. As a temporary workaround, avoid using the firmware parameter in the affected API endpoint until the issue is resolved.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2018-12031

Affected Products

Eaton Intelligent Power Manager

PT-2018-10954 · Eaton · Eaton Intelligent Power Manager

CVE-2018-12031

Weakness Enumeration

Related Identifiers

Affected Products

References · 3