What is CVE-2026-22618?

CVE-2026-22618 is a medium-severity vulnerability in Eaton Ipp Software, classified under CWE-358. CVSS score: 5.9/10. Published 2026-04-16.

How severe is CVE-2026-22618?

Medium severity. CVSS v3 base score is 5.9 out of 10.

Vulnerability in Eaton Ipp Software

CVE-2026-22618

A security misconfiguration was identified in Eaton Intelligent Power Protector (IPP), where an HTTP response header was set with an insecure attribute, potentially exposing users to web‑based attacks. This security issue has been fixed in…

EPSS: 0.000 (1.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.9 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:N.

Affected products

Eaton Ipp Software — versions 0

Weakness classification (CWE)

CWE-358

References

www.eaton.com/content/dam/eaton/company/news-insights/cybersecurity/security-bu…

Frequently asked questions

What is CVE-2026-22618?: CVE-2026-22618 is a medium-severity vulnerability in Eaton Ipp Software, classified under CWE-358. CVSS score: 5.9/10. Published 2026-04-16.
How severe is CVE-2026-22618?: Medium severity. CVSS v3 base score is 5.9 out of 10.