8 matches found
Dell 2335dn printer Weak Password Requirements (CVE-2018-15748)
On Dell 2335dn printers with Printer Firmware Version 2.70.05.02, Engine Firmware Version 1.10.65, and Network Firmware Version V4.02.152335dn MFP 11-22-2010, the admin interface allows an authenticated attacker to retrieve the configured SMTP or LDAP password by viewing the HTML source code of t...
Default credentials
On Dell 2335dn printers with Printer Firmware Version 2.70.05.02, Engine Firmware Version 1.10.65, and Network Firmware Version V4.02.152335dn MFP 11-22-2010, the admin interface allows an authenticated attacker to retrieve the configured SMTP or LDAP password by viewing the HTML source code of t...
CVE-2018-15748
On Dell 2335dn printers with Printer Firmware Version 2.70.05.02, Engine Firmware Version 1.10.65, and Network Firmware Version V4.02.152335dn MFP 11-22-2010, the admin interface allows an authenticated attacker to retrieve the configured SMTP or LDAP password by viewing the HTML source code of t...
CVE-2018-15748
CVE-2018-15748 affects Dell 2335dn printers. The admin interface (Email Settings) may leak the SMTP/LDAP password to an authenticated attacker by viewing HTML source, with authentication possibly achievable via a blank default admin password. Affected versions include Printer Firmware 2.70.05.02,...
CVE-2018-15748
On Dell 2335dn printers with Printer Firmware Version 2.70.05.02, Engine Firmware Version 1.10.65, and Network Firmware Version V4.02.152335dn MFP 11-22-2010, the admin interface allows an authenticated attacker to retrieve the configured SMTP or LDAP password by viewing the HTML source code of t...
Dell 2335dn and 2355dn Cross-Site Scripting Vulnerabilities
The Dell 2335dn and 2355dn are multifunction laser printers from Dell. A cross-site scripting vulnerability exists in the web user interface of the Dell 2335dn and 2355dn. An attacker could exploit this vulnerability to execute arbitrary HTML or JavaScript code within a user's browser session in...
CVE-2017-14386
The web user interface of Dell 2335dn and 2355dn Multifunction Laser Printers, firmware versions prior to V2.70.06.26 A13 and V2.70.45.34 A10 respectively, are affected by a cross-site scripting vulnerability. Attackers could potentially exploit this vulnerability to execute arbitrary HTML or...
CVE-2017-14386
Dell 2335dn and 2355dn printers are affected by a cross-site scripting (XSS) vulnerability in the web UI. The issue affects firmware versions prior to V2.70.06.26 A13 (2335dn) and V2.70.45.34 A10 (2355dn). Attackers could potentially execute arbitrary HTML or JavaScript code in a user’s browser s...