CVE-2026-22616 | THREATINT

Description

Eaton Intelligent Power Protector (IPP) software allows repeated authentication attempts against the web interface login page due to insufficient rate‑limiting controls. This security issue has been fixed in the latest version of Eaton IPP which is available on the Eaton download centre.

PUBLISHED Reserved 2026-01-08 | Published 2026-04-16 | Updated 2026-04-16 | Assigner Eaton

MEDIUM: 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Problem types

CWE-307 Improper restriction of excessive authentication attempts

Product status

Default status

unaffected

Any version before 2.0

affected

References

www.eaton.com/...ity/security-bulletins/etn-va-2025-1025.pdf

cve.org (CVE-2026-22616)

nvd.nist.gov (CVE-2026-22616)

Download JSON