Lucene search
K

38 matches found

Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/01/13 10:1 a.m.7 views

Multiple vulnerabilities in EATON UPS Companion

Overview EATON UPS Companion provided by Eaton contains multiple vulnerabilities listed below. Uncontrolled search path element CWE-427, CVE-2025-59887 Unquoted search path or element CWE-428, CVE-2025-59888 Kazuma Matsumoto of GMO Cybersecurity by IERAE, Inc. reported these vulnerabilities to th...

8.6CVSS7.8AI score0.00266EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/12/27 7:43 a.m.8 views

CVE-2025-59887

Improper authentication of library files in the Eaton UPS Companion software installer could lead to arbitrary code execution of an attacker with the access to the software package. This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

8.6CVSS7.8AI score0.00266EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/27 7:43 a.m.7 views

CVE-2025-67450

Due to insecure library loading in the Eaton UPS Companion software executable, an attacker with access to the software package could perform arbitrary code execution . This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

7.8CVSS7.7AI score0.00134EPSS
Exploits0References1
NVD
NVD
added 2025/12/26 7:15 a.m.3 views

CVE-2025-67450

Due to insecure library loading in the Eaton UPS Companion software executable, an attacker with access to the software package could perform arbitrary code execution . This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

7.8CVSS0.00134EPSS
Exploits0References1
OSV
OSV
added 2025/12/26 7:15 a.m.3 views

CVE-2025-59888

Improper quotation in search paths in the Eaton UPS Companion software installer could lead to arbitrary code execution of an attacker with the access to the file system. This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

6.7CVSS6.2AI score0.00192EPSS
Exploits0References1
OSV
OSV
added 2025/12/26 7:15 a.m.4 views

CVE-2025-59887

Improper authentication of library files in the Eaton UPS Companion software installer could lead to arbitrary code execution of an attacker with the access to the software package. This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

8.6CVSS6.2AI score0.00266EPSS
Exploits0References1
OSV
OSV
added 2025/12/26 7:15 a.m.7 views

CVE-2025-67450

Due to insecure library loading in the Eaton UPS Companion software executable, an attacker with access to the software package could perform arbitrary code execution . This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

7.8CVSS6.2AI score0.00134EPSS
Exploits0References1
NVD
NVD
added 2025/12/26 7:15 a.m.4 views

CVE-2025-59888

Improper quotation in search paths in the Eaton UPS Companion software installer could lead to arbitrary code execution of an attacker with the access to the file system. This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

6.7CVSS0.00192EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/26 6:59 a.m.25 views

CVE-2025-67450

Due to insecure library loading in the Eaton UPS Companion software executable, an attacker with access to the software package could perform arbitrary code execution . This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

7.8CVSS0.00134EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/26 6:59 a.m.4 views

EUVD-2025-205430

Due to insecure library loading in the Eaton UPS Companion software executable, an attacker with access to the software package could perform arbitrary code execution . This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

7.8CVSS7.2AI score0.00134EPSS
Exploits0References2
CVE
CVE
added 2025/12/26 6:59 a.m.14 views

CVE-2025-67450

CVE-2025-67450 affects Eaton UPS Companion software due to insecure library loading in the executable. An attacker with access to the software package could perform arbitrary code execution (Local, High impact). The issue is fixed in the latest Eaton EUC version available from the Eaton download ...

7.8CVSS7.4AI score0.00134EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/26 6:59 a.m.3 views

CVE-2025-67450

Due to insecure library loading in the Eaton UPS Companion software executable, an attacker with access to the software package could perform arbitrary code execution . This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

7.8CVSS7.4AI score0.00134EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/26 6:53 a.m.20 views

CVE-2025-59888

Improper quotation in search paths in the Eaton UPS Companion software installer could lead to arbitrary code execution of an attacker with the access to the file system. This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

6.7CVSS0.00192EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/26 6:53 a.m.5 views

EUVD-2025-205428

Improper quotation in search paths in the Eaton UPS Companion software installer could lead to arbitrary code execution of an attacker with the access to the file system. This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

6.7CVSS7.1AI score0.00192EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/26 6:48 a.m.4 views

CVE-2025-59887

Improper authentication of library files in the Eaton UPS Companion software installer could lead to arbitrary code execution of an attacker with the access to the software package. This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

8.6CVSS7.5AI score0.00266EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/26 6:48 a.m.21 views

CVE-2025-59887

Improper authentication of library files in the Eaton UPS Companion software installer could lead to arbitrary code execution of an attacker with the access to the software package. This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

8.6CVSS0.00266EPSS
Exploits0References1
CVE
CVE
added 2025/12/26 6:48 a.m.12 views

CVE-2025-59887

CVE-2025-59887 affects Eaton UPS Companion software installer. The issue is improper authentication of library files within the installer, which could allow an attacker with access to the software package to execute arbitrary code on the target system. Eaton indicates the vulnerability has been f...

8.6CVSS7.5AI score0.00266EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/12/26 12:0 a.m.2 views

Eaton UPS Companion 安全漏洞

Eaton UPS Companion is a power management software from Eaton Corporation USA. A security vulnerability exists in Eaton UPS Companion that stems from an improperly referenced search path that could lead to the execution of arbitrary code by an attacker with file system access...

6.7CVSS7.3AI score0.00192EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/26 12:0 a.m.5 views

PT-2025-53453

Name of the Vulnerable Software and Affected Versions Eaton UPS Companion affected versions not specified Description A flaw exists in the Eaton UPS Companion software installer related to improper handling of quotation marks in search paths. This could allow an attacker with file system access t...

6.7CVSS6.8AI score0.00192EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/12/26 12:0 a.m.6 views

Eaton UPS Companion 安全漏洞

Eaton UPS Companion is a power management software from Eaton Corporation USA. A security vulnerability exists in Eaton UPS Companion, which stems from an insecure library load and could lead to the execution of arbitrary code by an attacker with access to the software package...

7.8CVSS7.2AI score0.00134EPSS
Exploits0References2
Rows per page
Query Builder