Primary

Context

Eaton Intelligent Power Protector Web Interface Login Rate-Limiting Vulnerability

Vulnerability

A vulnerability in Eaton Intelligent Power Protector (IPP) software allows for repeated authentication attempts on the web interface login page, due to inadequate rate-limiting controls. This issue could be exploited to perform brute-force attacks, potentially leading to unauthorized access.

Impact

Exploitation of this vulnerability could allow for brute-force attacks on the web interface login, potentially leading to unauthorized access.

Remediation

Users are advised to update to the latest version of Eaton IPP, available on the Eaton download center.

Added: Apr 16, 2026, 5:22 AM

Updated: Apr 16, 2026, 5:22 AM

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

1.3

exploitability

4.7

remediation

0.0

relevance

6.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

1.3

exploitability

4.7

remediation

0.0

relevance

6.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Eaton Intelligent Power Protector Web Interface Login Rate-Limiting Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Eaton Intelligent Power Protector

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating