CVE-2025-59889HIGH 8.6EPSS p6.5%

CVE-2025-59889CVE-2025-59889

Description

Improper authentication of library files in the Eaton IPP software installer could lead to arbitrary code execution of an attacker with the access to the software package.  This security issue has been fixed in the latest version of IPP which is available on the Eaton download center.

Scoring

CVSS 3.18.6 (HIGH)
VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
EPSS0.17% probability of exploitation · percentile 6.5% · 2026-06-19T12:03:05Z
Published2025-10-14
Last modified2026-04-15

Underlying weaknesses· 1

CWE-427

References

  1. https://www.eaton.com/content/dam/eaton/company/news-insights/cybersecurity/security-bulletins/etn-va-2025-1009.pdf

1

TypeTargetConfidenceTier
WeaknessUncontrolled Search Path Elementcwe-4270%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-59887
CVE
CVE-2026-22619
CVE
CVE-2025-48396
CVE
CVE-2026-8992
CVE
CVE-2025-59886
CVE
CVE-2025-11344
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.