Improper Authentication Vulnerability in Eaton IPP Software Installer
CVE-2025-59889

8.6HIGH

Key Information:

Vendor: Eaton
Status: Eaton Ipp Software
Vendor: CVE Published:; 14 October 2025

What is CVE-2025-59889?

The Eaton IPP software installer contains a vulnerability that arises from improper authentication of library files. This flaw can be exploited by an attacker who has access to the software package, potentially allowing them to execute arbitrary code within the affected system. It's crucial for organizations using this software to evaluate their security measures and apply necessary updates to mitigate the risks associated with this vulnerability.

Affected Version(s)

Eaton IPP software Windows 0 < 1.76

References

https://www.eaton.com/content/dam/eaton/company/news-insi...

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 14, 2025
Vulnerability Reserved
Sep 23, 2025

JSON