Unrated severityNVD Advisory· Published May 28, 2009· Updated Apr 23, 2026

CVE-2008-6816

Description

Eaton MGEOPS Network Shutdown Module before 3.10 Build 13 allows remote attackers to execute arbitrary code by adding a custom action to the MGE frontend via pane_actionbutton.php, and then executing this action via exec_action.php.

Affected products

Eaton/Network Shutdown Module5 versions
cpe:2.3:h:eaton:network_shutdown_module:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:h:eaton:network_shutdown_module:*:*:*:*:*:*:*:*range: <=3.1_beta
- cpe:2.3:h:eaton:network_shutdown_module:2.6:*:*:*:*:*:*:*
- cpe:2.3:h:eaton:network_shutdown_module:3.0:*:*:*:*:*:*:*
- cpe:2.3:h:eaton:network_shutdown_module:3.02:*:*:*:*:*:*:*
- cpe:2.3:h:eaton:network_shutdown_module:3.04:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/32456nvdVendor Advisory
download.mgeops.com/install/win32/nsm/release_note_nsm_320.txtnvd
osvdb.org/50051nvd
www.nruns.com/security_advisory_eaton_mge_ops_network_shutdown_module_authentication_bypass.phpnvd
www.securityfocus.com/archive/1/497824/100/100/threadednvd
www.securityfocus.com/bid/31933nvd
exchange.xforce.ibmcloud.com/vulnerabilities/46131nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.008
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000