5.1
CVE-2022-33861
- EPSS 0.11%
- Veröffentlicht 25.11.2024 09:15:05
- Zuletzt bearbeitet 15.04.2026 00:35:42
- Quelle CybersecurityCOE@eaton.com
- CVE-Watchlists
- Unerledigt
Insufficient verification of authenticity in IPP
IPP software versions prior to v1.71 do not sufficiently verify the authenticity of data, in a way that causes it to accept invalid data.
Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)
Herstellereaton
≫
Produkt
intelligent_power_protector
Default Statusunknown
Version
0
Version <
1.71
Status
affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.11% | 0.017 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| CybersecurityCOE@eaton.com | 5.1 | 0.9 | 3.7 |
CVSS:3.1/AV:A/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
|
CWE-345 Insufficient Verification of Data Authenticity
The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.
https://www.eaton.com/content/dam/eaton/company/news-insights/cybersecurity/ETN-VA-2022-1011.pdf