Eaton Intelligent Power Manager

Risk Summary

Successful exploitation of these vulnerabilities could allow attackers to change certain settings, upload code, delete files, or execute commands.

CVEs (6)

Remediations

• Eaton IPM v1.69: Download | IPM | Eaton
• Eaton IPP v1.68: Download software | Power management | Eaton
• To prevent the exploitation of the issues and safeguard the software from malicious entities, Eaton recommends blocking Ports 4679 and 4680 at the enterprise network or home network where Intelligent Power Manager (IPM) software is installed and used.
• Please see Eaton vulnerability advisory number ETN-VA-2021-1000 for more information.
• Restrict exposure to external networks for all control system devices and/or systems and ensure they are not directly accessible from the open Internet.
• Deploy control system networks and remote devices behind barrier devices (e.g., firewalls, data diodes) and isolate them from business networks.
• Remote access to control system networks should be made available on a strict need-to-use basis. Remote access should use secure methods, such as virtual private networks (VPNs) updated to the most current version available.
• Regularly update/patch software/applications to latest versions available, as applicable.
• Enable audit logs on all devices and applications.
• Disable/deactivate unused communication channels, TCP/UDP ports and services (e.g., SNMP, FTP, BootP, DHCP, etc.) on networked devices.
• Create security zones for devices with common security requirements using barrier devices (e.g., firewalls, data diodes).
• Change default passwords following initial startup. Use complex secure passwords or passphrases.
• Perform regular security assessments and risk analysis of networked control systems.

Affected Vendors

Affected Products (3)

Affected Sectors

Energy