Unrated severityNVD Advisory· Published May 28, 2009· Updated Jun 16, 2026
CVE-2008-6816
CVE-2008-6816
Description
Eaton MGEOPS Network Shutdown Module before 3.10 Build 13 allows remote attackers to execute arbitrary code by adding a custom action to the MGE frontend via pane_actionbutton.php, and then executing this action via exec_action.php.
Affected products
6cpe:2.3:h:eaton:network_shutdown_module:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:h:eaton:network_shutdown_module:*:*:*:*:*:*:*:*range: <=3.1_beta
- cpe:2.3:h:eaton:network_shutdown_module:2.6:*:*:*:*:*:*:*
- cpe:2.3:h:eaton:network_shutdown_module:3.0:*:*:*:*:*:*:*
- cpe:2.3:h:eaton:network_shutdown_module:3.02:*:*:*:*:*:*:*
- cpe:2.3:h:eaton:network_shutdown_module:3.04:*:*:*:*:*:*:*
- (no CPE)range: <3.10 Build 13
Patches
Vulnerability mechanics
References
7- secunia.com/advisories/32456nvdVendor Advisory
- download.mgeops.com/install/win32/nsm/release_note_nsm_320.txtnvd
- osvdb.org/50051nvd
- www.nruns.com/security_advisory_eaton_mge_ops_network_shutdown_module_authentication_bypass.phpnvd
- www.securityfocus.com/archive/1/497824/100/100/threadednvd
- www.securityfocus.com/bid/31933nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/46131nvd
News mentions
0No linked articles in our index yet.