Lucene search
K

2279 matches found

Nuclei
Nuclei
added yesterday64 views

Brother Printers – Authentication Bypass via Default Admin Password

By leaking a target device's serial number, a remote attacker can generate the target device's default administrator password. The target device may leak its serial number via unauthenticated HTTP, HTTPS, IPP, SNMP, or PJL requests. id: CVE-2024-51978 info: name: Brother Printers – Authentication...

9.8CVSS7.1AI score0.23635EPSS
Exploits0References4
Nuclei
Nuclei
added 2 days ago36 views

Brother MFC-L9570CDW - Information Disclosure

An unauthenticated attacker who can access either the HTTP service TCP port 80, the HTTPS service TCP port 443, or the IPP service TCP port 631, can leak several pieces of sensitive information from a vulnerable device. The URI path /etc/mntinfo.csv can be accessed via a GET request and no...

5.3CVSS7AI score0.7656EPSS
Exploits0References1
Nuclei
Nuclei
added 2 days ago73 views

Sharp Multifunction Printers - Cookie Exposure

It was observed that Sharp printers are vulnerable to a listing of session cookies without authentication. Any attacker can list valid cookies by visiting a backdoor webpage and use them to authenticate to the printers. id: CVE-2024-33610 info: name: Sharp Multifunction Printers - Cookie Exposure...

9.1CVSS7AI score0.45142EPSS
Exploits1References3
EUVD
EUVD
added 6 days ago7 views

EUVD-2025-210448

Unauthorized use of Kyocera printers, allows all information stored in the Kyocera address book to be exported. The security measure that encrypts incoming data ian be bypassed with this vulnerability, allowing encrypted data to be decrypted. Passwords and other sensitive information can be...

7.5CVSS5.9AI score0.00199EPSS
Exploits0References3
NVD
NVD
added 6 days ago8 views

CVE-2025-63579

Unauthorized use of Kyocera printers, allows all information stored in the Kyocera address book to be exported. The security measure that encrypts incoming data ian be bypassed with this vulnerability, allowing encrypted data to be decrypted. Passwords and other sensitive information can be...

7.5CVSS0.00199EPSS
Exploits0References2
CVE
CVE
added 6 days ago12 views

CVE-2025-63579

CVE-2025-63579 affects Kyocera devices using Command Center RX for various TASKalfa models (e.g., 2552ci, 3252ci, 2553ci, 3253ci, 3554ci, 4052ci, 5052ci, 6052ci, 7052ci, 8052ci, 7353ci, 8353ci, 2554ci, 3254ci, 505). The description reports that unauthorized access can export all information store...

7.5CVSS5.9AI score0.00199EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 6 days ago6 views

CVE-2025-63579

Unauthorized use of Kyocera printers, allows all information stored in the Kyocera address book to be exported. The security measure that encrypts incoming data ian be bypassed with this vulnerability, allowing encrypted data to be decrypted. Passwords and other sensitive information can be...

7.5CVSS5.9AI score0.00199EPSS
Exploits0References3
Cvelist
Cvelist
added 6 days ago32 views

CVE-2025-63579

Unauthorized use of Kyocera printers, allows all information stored in the Kyocera address book to be exported. The security measure that encrypts incoming data ian be bypassed with this vulnerability, allowing encrypted data to be decrypted. Passwords and other sensitive information can be...

0.00199EPSS
Exploits0References2
Fedora
Fedora
added 2026/07/07 1:11 a.m.8 views

[SECURITY] Fedora 43 Update: hplip-3.26.4-7.fc43

The Hewlett-Packard Linux Imaging and Printing Project provides drivers for HP printers and multi-function peripherals...

9.8CVSS6AI score0.01333EPSS
Exploits0
NVD
NVD
added 2026/07/06 7:16 p.m.7 views

CVE-2026-13753

A missing authorization vulnerability exists in the embedded webserver of HP Deskjet 2800 Series Printers running firmware version =TBP1CN2612AR. An unauthenticated attacker with network access can send GET requests to multiple exposed administrative API endpoints and retrieve sensitive...

7.5CVSS0.00271EPSS
Exploits1References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/06/30 9:7 a.m.7 views

Reflected cross-site scripting vulnerability in multiple laser printers and MFPs which implement Ricoh Web Image Monitor

Overview Web Image Monitor provided by Ricoh Company, Ltd. is a web server that is included in and runs on laser printers and MFPs multifunction printers. Web Image Monitor contains the vulnerability listed below. Reflected cross-site scripting CWE-79 - CVE-2026-56809 Tomasz Holeksa of Pentest...

6.1CVSS6.4AI score0.00187EPSS
Exploits0References4
NVD
NVD
added 2026/06/30 7:16 a.m.12 views

CVE-2026-56809

Multiple laser printers and MFPs multifunction printers which implement Ricoh Web Image Monitor contain a reflected cross-site scripting vulnerability. An arbitrary script may be executed on the web browser of the user who accesses a crafted URL...

6.1CVSS0.00187EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/30 6:2 a.m.33 views

CVE-2026-56809

Multiple laser printers and MFPs multifunction printers which implement Ricoh Web Image Monitor contain a reflected cross-site scripting vulnerability. An arbitrary script may be executed on the web browser of the user who accesses a crafted URL...

6.1CVSS0.00187EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/30 6:2 a.m.6 views

EUVD-2026-40255

Multiple laser printers and MFPs multifunction printers which implement Ricoh Web Image Monitor contain a reflected cross-site scripting vulnerability. An arbitrary script may be executed on the web browser of the user who accesses Web Image Monitor...

6.1CVSS6.3AI score0.00187EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/30 6:2 a.m.8 views

CVE-2026-56809

Multiple laser printers and MFPs multifunction printers which implement Ricoh Web Image Monitor contain a reflected cross-site scripting vulnerability. An arbitrary script may be executed on the web browser of the user who accesses a crafted URL...

6.1CVSS6.4AI score0.00187EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/30 6:2 a.m.6 views

CVE-2026-56809

Multiple laser printers and MFPs multifunction printers which implement Ricoh Web Image Monitor contain a reflected cross-site scripting vulnerability. An arbitrary script may be executed on the web browser of the user who accesses a crafted URL...

6.1CVSS6.4AI score0.00187EPSS
Exploits0References4
CVE
CVE
added 2026/06/30 6:2 a.m.29 views

CVE-2026-56809

CVE-2026-56809 concerns Ricoh Web Image Monitor on multiple laser printers/MFPs. The vulnerability is a reflected cross-site scripting flaw that allows arbitrary script execution in the web browser of a user who accesses the Web Image Monitor. Reported impact is browser-side, with confidentiality...

6.1CVSS6.4AI score0.00187EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.11 views

PT-2026-53822

Name of the Vulnerable Software and Affected Versions Ricoh Web Image Monitor affected versions not specified Description Ricoh Web Image Monitor contains a reflected cross-site scripting issue. This allows an arbitrary script to be executed within the web browser of a user who accesses the...

6.1CVSS6.4AI score0.00187EPSS
Exploits0References10
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.2 views

Astra Linux – Vulnerability in cups

OpenPrinting CUPS is an open-source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and earlier, there was a use-after-free vulnerability in the CUPS scheduler cupsd when temporary printers were automatically deleted. The cupsdDeleteTemporaryPrinters function i...

6.2CVSS6.6AI score0.00178EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/06/19 12:0 a.m.8 views

Lexmark Printers Cross-site Scripting (CVE-2019-18791)

Lexmark printer MS812 and multiple older generation Lexmark devices have a stored XSS vulnerability in the embedded web server. The vulnerability can be exploited to expose session credentials and other information via the users web browser. This plugin only works with Tenable.ot. Please visit...

5.4CVSS6.1AI score0.00527EPSS
Exploits0References5
Rows per page
Query Builder