554 matches found
CVE-2024-47801
CVE-2024-47801 affects Sharp and Toshiba Tec MFPs. The vulnerability is a reflected cross-site scripting flaw caused by improper processing of query parameters in HTTP requests, enabling script execution in the user's browser when a crafted URL is opened. Technical details confirm the issue locat...
CVE-2024-47549
Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, which may allow contamination of unintended data to HTTP response headers. Accessing a crafted URL which points to an affected product may cause malicious script executed on the web browser...
CVE-2024-47549
Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, which may allow contamination of unintended data to HTTP response headers. Accessing a crafted URL which points to an affected product may cause malicious script executed on the web browser...
CVE-2024-47549
CVE-2024-47549 affects Sharp and Toshiba Tec MFPs. The issue stems from improper processing of query parameters in HTTP requests, which can contaminate unintended data into HTTP response headers. Accessing a crafted URL targeting an affected product may cause malicious script execution in the web...
CVE-2024-47406
Sharp and Toshiba Tec MFPs improperly process HTTP authentication requests, resulting in an authentication bypass vulnerability...
CVE-2024-47406
Sharp and Toshiba Tec MFPs improperly process HTTP authentication requests, resulting in an authentication bypass vulnerability...
CVE-2024-47406
CVE-2024-47406 affects Sharp and Toshiba Tec MFPs. The issue is described as an improper processing of HTTP authentication requests, leading to an authentication bypass (CWE-288). Connected sources (JVNDB-2024-011256, NVD entries, and CVE listings) confirm affected products are Sharp and Toshiba ...
CVE-2024-47005
Sharp and Toshiba Tec MFPs provide configuration related APIs. They are expected to be called by administrative users only, but insufficiently restricted. A non-administrative user may execute some configuration APIs...
CVE-2024-47005
Sharp and Toshiba Tec MFPs provide configuration related APIs. They are expected to be called by administrative users only, but insufficiently restricted. A non-administrative user may execute some configuration APIs...
CVE-2024-47005
CVE-2024-47005 affects Sharp and Toshiba Tec MFPs. The flaw is insufficient access restriction on certain configuration-related APIs, which are intended for administrative users only but may be invoked by non-administrative users. Impact described in connected sources includes the potential for n...
CVE-2024-45842
Sharp and Toshiba Tec MFPs improperly process URI data in HTTP PUT requests resulting in a path Traversal vulnerability. Unintended internal files may be retrieved when processing crafted HTTP requests...
CVE-2024-45842
The CVE-2024-45842 issue affects Sharp and Toshiba Tec MFPs (multifunction printers). Root cause: improper processing of URI data in HTTP PUT requests, leading to a path traversal vulnerability. Impact: unintended internal files may be retrieved when processing crafted HTTP requests. Connected so...
CVE-2024-45829
Sharp and Toshiba Tec MFPs provide the web page to download data, where query parameters in HTTP requests are improperly processed and resulting in an Out-of-bounds Read vulnerability. Crafted HTTP requests may cause affected products crashed...
CVE-2024-45829
Sharp and Toshiba Tec MFPs provide the web page to download data, where query parameters in HTTP requests are improperly processed and resulting in an Out-of-bounds Read vulnerability. Crafted HTTP requests may cause affected products crashed...
CVE-2024-45829
CVE-2024-45829 affects Sharp and Toshiba Tec MFPs. The issue is an Out-of-bounds Read in the web page used to download data, caused by improper processing of query parameters in HTTP requests. Crafting such requests can crash affected devices. Documents do not provide exploit details or fixed ver...
CVE-2024-43424
Sharp and Toshiba Tec MFPs improperly process HTTP request headers, resulting in an Out-of-bounds Read vulnerability. Crafted HTTP requests may cause affected products crashed...
CVE-2024-43424
Sharp and Toshiba Tec MFPs improperly process HTTP request headers, resulting in an Out-of-bounds Read vulnerability. Crafted HTTP requests may cause affected products crashed...
CVE-2024-43424
CVE-2024-43424 affects Sharp and Toshiba Tec MFPs. The vulnerability arises from improper processing of HTTP request headers, leading to an out-of-bounds read. This can cause crafted HTTP requests to crash affected products. Documents indicate remediation via firmware updates from the vendors, an...
CVE-2024-42420
Sharp and Toshiba Tec MFPs contain multiple Out-of-bounds Read vulnerabilities, due to improper processing of keyword search input and improper processing of SOAP messages. Crafted HTTP requests may cause affected products crashed...
CVE-2024-42420
CVE-2024-42420 affects Sharp and Toshiba Tec MFPs. It involves multiple out-of-bounds read vulnerabilities (CWE-125) caused by improper processing of keyword search input and SOAP messages. Exploitation could be triggered by crafted HTTP requests, potentially crashing affected devices. Remediatio...