Due to insecure library loading in the Eaton UPS Companion software executable, an attacker with access to the software package could perform arbitrary code execution . This security issue has been fixed in the latest version of EUC which is available on the Eaton download center.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:HEaton Ups Companion
APPEaton< 3.0
Related vulnerabilities
Improper authentication of library files in the Eaton UPS Companion software installer could lead to arbitrary...
UPS companion software v1.05 & Prior is affected by ‘Eval Injection’ vulnerability. The software does not neut...
Improper quotation in search paths in the Eaton UPS Companion software installer could lead to arbitrary code ...
Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated remote code execution vul...
Eaton Power Xpert Meter 4000, 6000, and 8000 devices before 13.4.0.10 have a single SSH private key across dif...