"Nine Flaws in CyberPower and Dataprobe Solutions Expose Data Centers to Hacking"
Multiple vulnerabilities affecting CyberPower's PowerPanel Enterprise Data Center Infrastructure Management (DCIM) platform and Dataprobe's iBoot Power Distribution Unit (PDU) were discovered by researchers at the Trellix Advanced Research Center. An attacker could exploit the vulnerabilities to gain unauthenticated access to these systems and conduct various malicious activities. CyberPower is a leading provider of data center hardware and infrastructure solutions, specializing in innovative power protection technologies and power management systems. The PowerPanel Enterprise DCIM platform enables Information Technology (IT) teams to configure, manage, and monitor the infrastructure of a data center via cloud connectivity. This platform functions as an integrated hub of information and control for all interconnected devices. These solutions are widely adopted by enterprises overseeing on-site server installations and expansive co-located data centers, including industry giants such as AWS, Google Cloud, Microsoft Azure, and more. This article continues to discuss the vulnerabilities in CyberPower's PowerPanel Enterprise DCIM platform and Dataprobe's iBoot PDU that could expose data centers to hacking.