CVE-2025-59889
Published: 14 October 2025
Summary
CVE-2025-59889 is a high-severity Uncontrolled Search Path Element (CWE-427) vulnerability in Eaton IPP (inferred from references). Its CVSS base score is 8.6 (High).
Operationally, ranked at the 5.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-34139
Vulnerability details
Improper authentication of library files in the Eaton IPP software installer could lead to arbitrary code execution of an attacker with the access to the software package. This security issue has been fixed in the latest version of IPP which…
more
is available on the Eaton download center.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.