CVE-2025-59888

CVSS v3.1

6.7

Medium

Vector

AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:H

Name of the Vulnerable Software and Affected Versions Eaton UPS Companion (affected versions not specified)

Description A flaw exists in the Eaton UPS Companion software installer related to improper handling of quotation marks in search paths. This could allow an attacker with file system access to execute arbitrary code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-428

Related Identifiers

CVE-2025-59888

Affected Products

Eaton Ups Companion

CVE-2025-59888

Weakness Enumeration

Related Identifiers

Affected Products

References · 9