CVE-2021-23283— Security issues in Eaton Intelligent Power Protector (IPP)

CVSS 5.2 · Medium EPSS 0.20% · P41 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-23283

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Security issues in Eaton Intelligent Power Protector (IPP)

Source: NVD (National Vulnerability Database)

Vulnerability Description

Eaton Intelligent Power Protector (IPP) prior to version 1.69 is vulnerable to stored Cross Site Scripting. The vulnerability exists due to insufficient validation of user input and improper encoding of the output for certain resources within the IPP software.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

在Web页面生成时对输入的转义处理不恰当(跨站脚本)

Source: NVD (National Vulnerability Database)

Vulnerability Title

Intelligent Power Protector跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Intelligent Power Protector是一款智能电源软件。 Eaton Intelligent Power Protector (IPP) 1.69 版本之前存在跨站脚本漏洞，该漏洞源于对 IPP 软件中某些资源的用户输入验证不足和输出编码不当所致。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Eaton	Eaton Intelligent Power Protector (IPP)	unspecified ~ 1.69 release 166	-

II. Public POCs for CVE-2021-23283

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2021-23283

请登录查看更多情报信息。

IV. Related Vulnerabilities

Same vendor: Eaton

Same weakness: CWE-79

V. Comments for CVE-2021-23283

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-23283— Security issues in Eaton Intelligent Power Protector (IPP)

I. Basic Information for CVE-2021-23283

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2021-23283

III. Intelligence Information for CVE-2021-23283

IV. Related Vulnerabilities

V. Comments for CVE-2021-23283

Leave a comment