PT-2025-53452 · Eaton · Eaton Ups Companion
Published
2025-12-26
·
Updated
2026-01-05
·
CVE-2025-59887
CVSS v3.1
8.6
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Eaton UPS Companion software (affected versions not specified)
Description
A flaw exists in the Eaton UPS Companion software installer related to improper authentication of library files. This could allow an attacker who has access to the software package to execute arbitrary code.
Recommendations
Update to the latest version of the Eaton UPS Companion software available on the Eaton download center.
Fix
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Eaton Ups Companion