CVE-2026-22616
published 2026-04-16CVE-2026-22616: Eaton Intelligent Power Protector (IPP) software allows repeated authentication attempts against the web interface login page due to insufficient rate‑limiting…
PriorityP346high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EPSS
0.32%
23.6th percentile
Eaton Intelligent Power Protector (IPP) software allows repeated authentication attempts against the web interface login page due to insufficient rate‑limiting controls. This security issue has been fixed in the latest version of Eaton IPP which is available on the Eaton download centre.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| eaton | intelligent_power_protector | < 2.00 | 2.00 |
| eaton | ipp_software | < 2.0 | 2.0 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-xcvh-9j7m-6vw3: Eaton Intelligent Power Protector (IPP) software allows repeated authentication attempts against the web interface login page due to insufficient rate
ghsa_unreviewed·2026-04-16
CVE-2026-22616 [MEDIUM] CWE-307 GHSA-xcvh-9j7m-6vw3: Eaton Intelligent Power Protector (IPP) software allows repeated authentication attempts against the web interface login page due to insufficient rate
Eaton Intelligent Power Protector (IPP) software allows repeated authentication attempts against the web interface login page due to insufficient rate‑limiting controls. This security issue has been fixed in the latest version of Eaton IPP which is available on the Eaton download centre.
VulDB
Eaton IPP Software up to 1.x Web Interface excessive authentication
vuldb·2026-04-16·CVSS 6.5
CVE-2026-22616 [MEDIUM] Eaton IPP Software up to 1.x Web Interface excessive authentication
A vulnerability has been found in Eaton IPP Software up to 1.x and classified as problematic. Impacted is an unknown function of the component Web Interface. The manipulation leads to improper restriction of excessive authentication attempts.
This vulnerability is uniquely identified as CVE-2026-22616. The attack is possible to be carried out remotely. No exploit exists.
The affected component should be upgraded.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-04-16
Published