CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

554 matches found

CNNVD•added 2024/11/26 12:0 a.m.•1 views

Sharp MFP和Toshiba MFP 安全漏洞

Sharp MFP is a series of multifunction printers from Sharp Corporation, Japan.Toshiba MFP is a series of printers from Toshiba Corporation, Japan. A security vulnerability exists in Sharp MFP and Toshiba MFP that stems from an out-of-bounds read issue that makes them susceptible to...

7.5CVSS8.8AI score0.00159EPSS

Exploits0References5

CNNVD•added 2024/11/26 12:0 a.m.•0 views

Sharp MFP和Toshiba MFP 跨站脚本漏洞

Sharp MFP is a series of multifunction printers from Sharp Corporation, Japan.Toshiba MFP is a series of printers from Toshiba Corporation, Japan. A cross-site scripting vulnerability exists in Sharp MFP and Toshiba MFP that originates from arbitrary scripts that can be executed on the...

7.4CVSS8.4AI score0.00218EPSS

Exploits0References5

Japan Vulnerability Notes•added 2024/10/28 8:33 a.m.•4 views

Multiple vulnerabilities in Sharp and Toshiba Tec MFPs

Overview MFPs multifunction printers provided by Sharp and Toshiba Tec Corporation contain multiple vulnerabilites listed below. Out-of-bounds Read CWE-125 CVE-2024-42420 Out-of-bounds read vulnerabilities coming from improper processing of keyword search input and improper processing of SOAP...

9.8CVSS6AI score0.00933EPSS

Exploits0References18

OSV•added 2024/10/25 7:15 a.m.•2 views

CVE-2024-47005

Sharp and Toshiba Tec MFPs provide configuration related APIs. They are expected to be called by administrative users only, but insufficiently restricted. A non-administrative user may execute some configuration APIs...

8.1CVSS7.3AI score0.00435EPSS

Exploits0References3

NVD•added 2024/10/25 7:15 a.m.•14 views

CVE-2024-47549

Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, which may allow contamination of unintended data to HTTP response headers. Accessing a crafted URL which points to an affected product may cause malicious script executed on the web browser...

7.4CVSS0.00481EPSS

Exploits0References3

NVD•added 2024/10/25 7:15 a.m.•13 views

CVE-2024-47005

Sharp and Toshiba Tec MFPs provide configuration related APIs. They are expected to be called by administrative users only, but insufficiently restricted. A non-administrative user may execute some configuration APIs...

8.1CVSS0.00435EPSS

Exploits0References3

OSV•added 2024/10/25 7:15 a.m.•3 views

CVE-2024-47801

Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, resulting in a reflected cross-site scripting vulnerability. Accessing a crafted URL which points to an affected product may cause malicious script executed on the web browser...

6.1CVSS5.6AI score

Exploits0References3

NVD•added 2024/10/25 7:15 a.m.•12 views

CVE-2024-47406

Sharp and Toshiba Tec MFPs improperly process HTTP authentication requests, resulting in an authentication bypass vulnerability...

9.8CVSS0.00319EPSS

Exploits0References3

OSV•added 2024/10/25 7:15 a.m.•4 views

CVE-2024-48870

Sharp and Toshiba Tec MFPs improperly validate input data in URI data registration, resulting in a stored cross-site scripting vulnerability. If crafted input is stored by an administrative user, malicious script may be executed on the web browsers of other victim users...

4.8CVSS7.2AI score0.00384EPSS

Exploits0References3

OSV•added 2024/10/25 7:15 a.m.•2 views

CVE-2024-47549

Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, which may allow contamination of unintended data to HTTP response headers. Accessing a crafted URL which points to an affected product may cause malicious script executed on the web browser...

6.1CVSS7.3AI score

Exploits0References3

OSV•added 2024/10/25 7:15 a.m.•6 views

CVE-2024-47406

Sharp and Toshiba Tec MFPs improperly process HTTP authentication requests, resulting in an authentication bypass vulnerability...

9.8CVSS5.8AI score0.00319EPSS

Exploits0References3

OSV•added 2024/10/25 7:15 a.m.•1 views

CVE-2024-43424

Sharp and Toshiba Tec MFPs improperly process HTTP request headers, resulting in an Out-of-bounds Read vulnerability. Crafted HTTP requests may cause affected products crashed...

7.5CVSS5.8AI score0.00478EPSS

Exploits0References3

NVD•added 2024/10/25 7:15 a.m.•10 views

CVE-2024-43424

Sharp and Toshiba Tec MFPs improperly process HTTP request headers, resulting in an Out-of-bounds Read vulnerability. Crafted HTTP requests may cause affected products crashed...

7.5CVSS0.00478EPSS

Exploits0References3

OSV•added 2024/10/25 7:15 a.m.•3 views

CVE-2024-45842

Sharp and Toshiba Tec MFPs improperly process URI data in HTTP PUT requests resulting in a path Traversal vulnerability. Unintended internal files may be retrieved when processing crafted HTTP requests...

5.3CVSS5.7AI score0.00757EPSS

Exploits0References3

NVD•added 2024/10/25 7:15 a.m.•15 views

CVE-2024-42420

Sharp and Toshiba Tec MFPs contain multiple Out-of-bounds Read vulnerabilities, due to improper processing of keyword search input and improper processing of SOAP messages. Crafted HTTP requests may cause affected products crashed...

7.5CVSS0.00478EPSS

Exploits0References3

NVD•added 2024/10/25 7:15 a.m.•13 views

CVE-2024-45842

Sharp and Toshiba Tec MFPs improperly process URI data in HTTP PUT requests resulting in a path Traversal vulnerability. Unintended internal files may be retrieved when processing crafted HTTP requests...

5.3CVSS0.00757EPSS

Exploits0References3

NVD•added 2024/10/25 7:15 a.m.•15 views

CVE-2024-45829

Sharp and Toshiba Tec MFPs provide the web page to download data, where query parameters in HTTP requests are improperly processed and resulting in an Out-of-bounds Read vulnerability. Crafted HTTP requests may cause affected products crashed...

7.5CVSS0.00219EPSS

Exploits0References3

Vulnrichment•added 2024/10/25 6:18 a.m.•12 views

CVE-2024-48870

Sharp and Toshiba Tec MFPs improperly validate input data in URI data registration, resulting in a stored cross-site scripting vulnerability. If crafted input is stored by an administrative user, malicious script may be executed on the web browsers of other victim users...

6.2CVSS6.3AI score0.00384EPSS

Exploits0References3

Vulnrichment•added 2024/10/25 6:18 a.m.•10 views

CVE-2024-47801

Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, resulting in a reflected cross-site scripting vulnerability. Accessing a crafted URL which points to an affected product may cause malicious script executed on the web browser...

7.4CVSS6.4AI score0.00933EPSS

Exploits0References3

Cvelist•added 2024/10/25 6:18 a.m.•17 views

CVE-2024-47801

Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, resulting in a reflected cross-site scripting vulnerability. Accessing a crafted URL which points to an affected product may cause malicious script executed on the web browser...

7.4CVSS0.00933EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by