10 matches found
CVE-2019-13198
The web application of several Kyocera printers such as the ECOSYS M5526cdw 2R72000.001.701 was affected by Stored XSS. Successful exploitation of this vulnerability can lead to session hijacking of the administrator in the web application or the execution of unwanted actions...
Kyocera ECOSYS M5526CDW Cross-Site Scripting Vulnerability
The Kyocera ECOSYS M5526CDW is a multifunction printer from Kyocera Japan. A cross-site scripting vulnerability in the Web application in the Kyocera ECOSYS M5526CDW version 2R72000.001.701, which stems from a lack of proper validation of client-side data in the WEB application, can be exploited ...
Kyocera ECOSYS M5526CDW Cross-Site Request Forgery Vulnerability
The Kyocera ECOSYS M5526CDW is a multifunction printer from Kyocera Japan. A cross-site request forgery vulnerability exists in the Kyocera ECOSYS M5526cdw version 2R72000.001.701, which can be exploited by an attacker to compromise a local account...
Kyocera ECOSYS M5526cdw Buffer Overflow Vulnerability (CNVD-2020-20979)
The Kyocera ECOSYS M5526CDW is a multifunction printer from Kyocera Japan. A buffer overflow vulnerability exists in the LPD service in the Kyocera ECOSYS M5526cdw version 2R72000.001.701, which can be exploited by an attacker to cause a denial of service and execute arbitrary code...
CVE-2019-13195
The web application of some Kyocera printers such as the ECOSYS M5526cdw 2R72000.001.701 was vulnerable to path traversal, allowing an unauthenticated user to retrieve arbitrary files, or check if files or folders existed within the file system...
CVE-2019-13198
The web application of several Kyocera printers such as the ECOSYS M5526cdw 2R72000.001.701 was affected by Stored XSS. Successful exploitation of this vulnerability can lead to session hijacking of the administrator in the web application or the execution of unwanted actions...
CVE-2019-13202
Some Kyocera printers such as the ECOSYS M5526cdw 2R72000.001.701 were affected by a buffer overflow vulnerability in the okhtmlfile and failhtmlfile parameters of several functionalities of the web application that would allow an unauthenticated attacker to perform a Denial of Service attack,...
CVE-2019-13199
Some Kyocera printers such as the ECOSYS M5526cdw 2R72000.001.701 did not implement any mechanism to avoid CSRF. Successful exploitation of this vulnerability can lead to the takeover of a local account on the device...
CVE-2019-13203
Some Kyocera printers such as the ECOSYS M5526cdw 2R72000.001.701 were affected by an integer overflow vulnerability in the arg3 parameter of several functionalities of the web application that would allow an authenticated attacker to perform a Denial of Service attack, crashing the device, or...
CVE-2019-13201
CVE-2019-13201 affects Kyocera printers, notably the ECOSYS M5526cdw (2R7_2000.001.701). The underlying flaw is a buffer overflow in the LPD service, which allows an unauthenticated attacker to cause a Denial of Service and potentially execute arbitrary code on the device. The available documents...