Security Advisory

CVE-2022-3187

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-21 22:29:36

Last updated 2025-04-15 19:32:49

Assigner icscert

State PUBLISHED

Description

Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where certain PHP pages only validate when a valid connection is established with the database. However, these PHP pages do not verify the validity of a user. Attackers could leverage this lack of verification to read the state of outlets.

← Browse all CVEs View on cve.org ↗