Vulnerability Description
The American Power Conversion (APC) AP7932 0u 30amp Switched Rack Power Distribution Unit (PDU), with rpdu 3.5.5 and aos 3.5.6, allows remote attackers to bypass authentication and obtain login access by making a login attempt while a different client is logged in, and then resubmitting the login attempt once the other client exits.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apc | Oas | 3.5.6 |
| Apc | Switched Rack Pdu Firmware | 3.5.5 |
Related Weaknesses (CWE)
References
- http://securityreason.com/securityalert/3418
- http://securitytracker.com/id?1019018
- http://www.securityfocus.com/archive/1/484363/100/0/threaded
- http://www.securityfocus.com/bid/26636
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38783
- http://securityreason.com/securityalert/3418
- http://securitytracker.com/id?1019018
- http://www.securityfocus.com/archive/1/484363/100/0/threaded
- http://www.securityfocus.com/bid/26636
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38783
FAQ
What is CVE-2007-6226?
CVE-2007-6226 is a vulnerability with a CVSS score of 7.1 (HIGH). The American Power Conversion (APC) AP7932 0u 30amp Switched Rack Power Distribution Unit (PDU), with rpdu 3.5.5 and aos 3.5.6, allows remote attackers to bypass authentication and obtain login access...
How severe is CVE-2007-6226?
CVE-2007-6226 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-6226?
Check the references section above for vendor advisories and patch information. Affected products include: Apc Oas, Apc Switched Rack Pdu Firmware.