Lucene search
Ecc0f906-8666-484c-bcf8-c3b7520a72f0NVD:CVE-2024-3496HistoryJun 14, 2024 - 5:15 a.m.
CVE-2024-3496
2024-06-1405:15:48
CWE-288
ecc0f906-8666-484c-bcf8-c3b7520a72f0
web.nvd.nist.gov
2
attackers
authentication
printer
system
information
malicious drivers
products
models
versions
reference url
8.8 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
16.0%
Attackers can bypass the web login authentication process to gain access to the printerβs system information and upload malicious drivers to the printer. As for the affected products/models/versions, see the reference URL.
Related
cvelist
cvelist
CVE-2024-3496 Authentication Bypass Vulnerability
2024-06-14 04:13:22
zdi
zdi
Toshiba e-STUDIO2518A Authentication Bypass Vulnerability
2024-06-18 00:00:00
cve
cve
CVE-2024-3496
2024-06-14 05:15:48
8.8 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
16.0%
Related for NVD:CVE-2024-3496