Known Vulnerabilities for products from Eaton
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Eaton".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Eaton can be found at device.report : Eaton
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-22619 json | Eaton Intelligent Power Protector (IPP) is affected by insecure library loading in its executable, which could lead to arbitr... | Not Provided | 2026-04-16 | 2026-04-22 |
| CVE-2026-22618 json | A security misconfiguration was identified in Eaton Intelligent Power Protector (IPP), where an HTTP response header was set ... | Not Provided | 2026-04-16 | 2026-04-22 |
| CVE-2026-22617 json | Eaton Intelligent Power Protector (IPP) uses an insecure cookie configuration, which could allow a network‑based attacker t... | Not Provided | 2026-04-16 | 2026-04-22 |
| CVE-2026-22616 json | Eaton Intelligent Power Protector (IPP) software allows repeated authentication attempts against the web interface login p... | Not Provided | 2026-04-16 | 2026-04-22 |
| CVE-2026-22615 json | Due to improper input validation in one of the Eaton Intelligent Power Protector (IPP) XML, it is possible for an attacker wi... | Not Provided | 2026-04-16 | 2026-04-22 |
| CVE-2023-43777 json | Eaton easySoft software is used to program easy controllers and displays for configuring, programming and defining parameters... | 6.5 - MEDIUM | 2023-10-17 | 2023-10-25 |
| CVE-2023-43776 json | Eaton easyE4 PLC offers a device password protection functionality to facilitate a secure connection and prevent unauthorized... | 6.6 - MEDIUM | 2023-10-17 | 2023-10-25 |
| CVE-2023-43775 json | Denial-of-service vulnerability in the web server of the Eaton SMP Gateway allows attacker to potentially force an unexpect... | 5.3 - MEDIUM | 2023-09-27 | 2023-10-02 |
| CVE-2022-33859 json | A security vulnerability was discovered in the Eaton Foreseer EPMS software. Foreseer EPMS connects an operation’s vast arr... | 9.8 - CRITICAL | 2022-10-28 | 2023-10-18 |
| CVE-2021-23288 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 4.8 - MEDIUM | 2022-04-01 | 2022-04-09 |
| CVE-2021-23287 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2022-04-01 | 2022-04-09 |
| CVE-2021-23286 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8 - HIGH | 2022-04-18 | 2023-11-07 |
| CVE-2021-23285 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 4.8 - MEDIUM | 2022-04-18 | 2023-11-07 |
| CVE-2021-23284 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 4.8 - MEDIUM | 2022-04-18 | 2023-11-07 |
| CVE-2021-23283 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2022-04-19 | 2022-04-27 |
| CVE-2021-23281 json | Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated remote code execution vulnerability. IPM... | 10 - CRITICAL | 2021-04-13 | 2021-04-20 |
| CVE-2021-23280 json | Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to authenticated arbitrary file upload vulnerability. IPM�... | 9.9 - CRITICAL | 2021-04-13 | 2021-04-21 |
| CVE-2021-23279 json | Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated arbitrary file delete vulnerability indu... | 10 - CRITICAL | 2021-04-13 | 2021-04-21 |
| CVE-2021-23278 json | Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to authenticated arbitrary file delete vulnerability induce... | 9.6 - CRITICAL | 2021-04-13 | 2021-04-21 |
| CVE-2021-23277 json | Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated eval injection vulnerability. The softwa... | 10 - CRITICAL | 2021-04-13 | 2023-06-26 |
Known software with vulnerabilities from Eaton
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Eaton | 9000x | - |
| Operating System | Eaton | 9000x Firmware | 2.0.29 |
| Application | Eaton | Easysoft | - |
| Application | Eaton | Elcsoft | 1.00.08 |
| Application | Eaton | Halo Home | 1.11.4 |
| Hardware | Eaton | Hmisoft Vu3 | - |
| Operating System | Eaton | Hmisoft Vu3 Firmware | - |
| Application | Eaton | Intelligent Power Manager | 1.6 |
| Application | Eaton | Proview | 4.0 |
| Application | Eaton | Secureconnect | - |
| Application | Eaton | Ups Companion | - |
| Application | Eaton | Xcomfort Ethernet Communication Interface | 1.07 |