CNNVD-202512-4797 Information

CNNVD ID

CNNVD-202512-4797

Related CVE

CVE-2025-59887

• CNNVD Published: 2025-12-26

Description (Chinese)

Eaton UPS Companion是美国伊顿（Eaton）公司的一款电源管理软件。 Eaton UPS Companion存在安全漏洞，该漏洞源于库文件身份验证不当，可能导致具有软件包访问权限的攻击者执行任意代码。

Description (English)

Eaton UPS Companion is a power management software for Eaton, United States. There is a security loophole in Eaton UPS Companion, which stems from improper identification of the library documents, which may lead to the implementation of random codes by the assailants with access to the package.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

伊顿

Published

2025-12-26

Last Modified

2026-02-24

References

https://www.eaton.com/content/dam/eaton/company/news-insights/cybersecurity/security-bulletins/etn-va-2025-1026.pdf https://access.redhat.com/security/cve/cve-2025-59887

Patch

https://www.eaton.com/us/en-us/forms/backup-power-ups-surge-it-distribution/ups-companion-software-form.html