216.73.217.80

CVE-2026-22618

· Published 16/04/2026 06:16 · Modified 17/04/2026 15:38

Labels: CVE-2026-22618 2026-04-16CVE-2026-22618CWE-358[email protected]

Essential information

Published
16/04/2026 06:16
Modified
17/04/2026 15:38
Author
Creator
CVSS
5.9 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:N

CVSS metrics

Description

A security misconfiguration was identified in Eaton Intelligent Power Protector (IPP), where an HTTP response header was set with an insecure attribute, potentially exposing users to web‑based attacks. This security issue has been fixed in the latest version of Eaton IPP software which is available on the Eaton download centre.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
eaton / intelligent power protector cpe:2.3:a:eaton:intelligent_power_protector:*:*:*:*:*:*:*:*

References