Lucene search
Ecc0f906-8666-484c-bcf8-c3b7520a72f0NVD:CVE-2024-27169HistoryJun 14, 2024 - 4:15 a.m.
CVE-2024-27169
2024-06-1404:15:35
CWE-306
ecc0f906-8666-484c-bcf8-c3b7520a72f0
web.nvd.nist.gov
8
toshiba
printers
authentication
bypass
local attacker
CVSS3
8.4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
15.7%
Toshiba printers provides API without authentication for internal access. A local attacker can bypass authentication in applications, providing administrative access. As for the affected products/models/versions, see the reference URL.
Related
cve
cve
CVE-2024-27169
2024-06-14 04:15:35
vulnrichment
vulnrichment
CVE-2024-27169 Lack of authentication
2024-06-14 03:55:04
cvelist
cvelist
CVE-2024-27169 Lack of authentication
2024-06-14 03:55:04
openvas
openvas
Toshiba Printers Multiple Vulnerabilities (May 2024)
2024-07-08 00:00:00
packetstorm
packetstorm
Toshiba Multi-Function Printers 40 Vulnerabilities
2024-07-04 00:00:00
CVSS3
8.4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
15.7%
Related for NVD:CVE-2024-27169