CVE-2024-34025

CyberPower PowerPanel business application code contains a hard-coded set of authentication credentials. This could result in an attacker bypassing authentication and gaining administrator privileges.

CVSS

No CVSS.

References

Link	Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-24-123-01	Third Party Advisory US Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-24-123-01	Third Party Advisory US Government Resource
https://www.cyberpower.com/global/en/product/sku/powerpanel_business_for_windows#downloads	Product
https://www.cyberpower.com/global/en/product/sku/powerpanel_business_for_windows#downloads	Product

Configurations

Configuration 1 (hide)

cpe:2.3:a:cyberpower:powerpanel:*:*:*:*:business:windows:*:*

History

04 Aug 2025, 14:12

Type	Values Removed	Values Added
References	~~() https://www.cyberpower.com/global/en/product/sku/powerpanel_business_for_windows#downloads -~~	() https://www.cyberpower.com/global/en/product/sku/powerpanel_business_for_windows#downloads - Product
References	~~() https://www.cisa.gov/news-events/ics-advisories/icsa-24-123-01 -~~	() https://www.cisa.gov/news-events/ics-advisories/icsa-24-123-01 - Third Party Advisory, US Government Resource
CWE	~~CWE-259~~
First Time		Cyberpower Cyberpower powerpanel
CPE		cpe:2.3:a:cyberpower:powerpanel:::::business:windows::

15 May 2024, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-05-15 20:15

Updated : 2025-08-04 14:12

NVD link : CVE-2024-34025

Mitre link : CVE-2024-34025

JSON object : View

Products Affected

cyberpower

powerpanel

CWE

No CWE.

JSON object

Attach tags to CVE-2024-34025

Attach tags to `CVE-2024-34025`