Lucene search
+L

358 matches found

Nuclei
Nuclei
added 12 hours ago69 views

Kyocera Net View Address Book Exposure

Kyocera multifunction printers running vulnerable versions of Net View unintentionally expose sensitive user information, including usernames and passwords, through an insufficiently protected address book export function. id: CVE-2022-1026 info: name: Kyocera Net View Address Book Exposure autho...

8.6CVSS7.6AI score0.15102EPSS
Exploits5References2
Nuclei
Nuclei
added yesterday129 views

Kyocera Printer d-COPIA253MF - Directory Traversal

Kyocera Printer d-COPIA253MF plus is susceptible to a directory traversal vulnerability which could allow an attacker to retrieve or view arbitrary files from the affected server. id: CVE-2020-23575 info: name: Kyocera Printer d-COPIA253MF - Directory Traversal author: 0xAkoko severity: high...

7.5CVSS6.8AI score0.36765EPSS
Exploits0References4
Nuclei
Nuclei
added 2 days ago252 views

Kyocera TASKalfa printer - Path Traversal

CCRX has a Path Traversal vulnerability. Path Traversal is an attack on web applications. By manipulating the value of the file path, an attacker can gain access to the file system, including source code and critical system settings. id: CVE-2023-34259 info: name: Kyocera TASKalfa printer - Path...

4.9CVSS6.7AI score0.60745EPSS
Exploits2References5
EUVD
EUVD
added 2026/07/09 9:31 p.m.12 views

EUVD-2025-210448

Unauthorized use of Kyocera printers, allows all information stored in the Kyocera address book to be exported. The security measure that encrypts incoming data ian be bypassed with this vulnerability, allowing encrypted data to be decrypted. Passwords and other sensitive information can be...

7.5CVSS5.9AI score0.00199EPSS
Exploits0References3
NVD
NVD
added 2026/07/09 7:16 p.m.9 views

CVE-2025-63579

Unauthorized use of Kyocera printers, allows all information stored in the Kyocera address book to be exported. The security measure that encrypts incoming data ian be bypassed with this vulnerability, allowing encrypted data to be decrypted. Passwords and other sensitive information can be...

7.5CVSS0.00199EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/09 12:0 a.m.32 views

CVE-2025-63579

Unauthorized use of Kyocera printers, allows all information stored in the Kyocera address book to be exported. The security measure that encrypts incoming data ian be bypassed with this vulnerability, allowing encrypted data to be decrypted. Passwords and other sensitive information can be...

0.00199EPSS
Exploits0References2
CVE
CVE
added 2026/07/09 12:0 a.m.16 views

CVE-2025-63579

CVE-2025-63579 affects Kyocera devices using Command Center RX for various TASKalfa models (e.g., 2552ci, 3252ci, 2553ci, 3253ci, 3554ci, 4052ci, 5052ci, 6052ci, 7052ci, 8052ci, 7353ci, 8353ci, 2554ci, 3254ci, 505). The description reports that unauthorized access can export all information store...

7.5CVSS5.9AI score0.00199EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/07/09 12:0 a.m.6 views

CVE-2025-63579

Unauthorized use of Kyocera printers, allows all information stored in the Kyocera address book to be exported. The security measure that encrypts incoming data ian be bypassed with this vulnerability, allowing encrypted data to be decrypted. Passwords and other sensitive information can be...

7.5CVSS5.9AI score0.00199EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/04/22 3:4 p.m.162 views

Exploit for Insufficiently Protected Credentials in Kyocera Net_Viewer

KyoceraCredsDump - CVE-2022-1026 - Based on the original explo...

8.6CVSS7.2AI score0.15102EPSS
Exploits5
OSV
OSV
added 2026/01/13 11:15 p.m.6 views

CVE-2022-50932

Kyocera Command Center RX ECOSYS M2035dn contains a directory traversal vulnerability that allows unauthenticated attackers to read sensitive system files by manipulating file paths under the /js/ path. Attackers can exploit the issue by sending requests like /js/../../../../.../etc/passwd%00.jpg...

8.7CVSS5.8AI score0.03534EPSS
Exploits1References3
NVD
NVD
added 2026/01/13 11:15 p.m.7 views

CVE-2022-50932

Kyocera Command Center RX ECOSYS M2035dn contains a directory traversal vulnerability that allows unauthenticated attackers to read sensitive system files by manipulating file paths under the /js/ path. Attackers can exploit the issue by sending requests like /js/../../../../.../etc/passwd%00.jpg...

8.7CVSS0.03534EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/01/13 10:51 p.m.27 views

CVE-2022-50932 Kyocera Command Center RX ECOSYS M2035dn - Directory Traversal File Disclosure (Unauthenticated)

Kyocera Command Center RX ECOSYS M2035dn contains a directory traversal vulnerability that allows unauthenticated attackers to read sensitive system files by manipulating file paths under the /js/ path. Attackers can exploit the issue by sending requests like /js/../../../../.../etc/passwd%00.jpg...

8.7CVSS0.03534EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/01/13 10:51 p.m.2 views

CVE-2022-50932 Kyocera Command Center RX ECOSYS M2035dn - Directory Traversal File Disclosure (Unauthenticated)

Kyocera Command Center RX ECOSYS M2035dn contains a directory traversal vulnerability that allows unauthenticated attackers to read sensitive system files by manipulating file paths under the /js/ path. Attackers can exploit the issue by sending requests like /js/../../../../.../etc/passwd%00.jpg...

8.7CVSS6.6AI score0.03534EPSS
Exploits1References3
CVE
CVE
added 2026/01/13 10:51 p.m.25 views

CVE-2022-50932

CVE-2022-50932 affects Kyocera Command Center RX ECOSYS M2035dn. A directory traversal flaw on the /js/ path allows unauthenticated attackers to read sensitive files (e.g., /etc/passwd, /etc/shadow) by crafting traversal strings (including null-byte variants). Reported exploitation exists (e.g., ...

8.7CVSS6.6AI score0.03534EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.13 views

Kyocera Command Center RX 路径遍历漏洞

Kyocera Command Center RX is a centralized printer management tool from Kyocera, Japan. The product is primarily used to manage and monitor printers on a local area network LAN. A path traversal vulnerability exists in Kyocera Command Center RX that stems from the presence of directory traversal,...

8.7CVSS7.3AI score0.03534EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/12/25 8:18 p.m.14 views

CVE-2019-25254

KYOCERA Net Admin 3.4.0906 contains a cross-site request forgery vulnerability that allows attackers to create administrative users without proper request validation. Attackers can craft malicious web pages that automatically submit forms to add new admin accounts with predefined credentials when...

5.3CVSS6.8AI score0.00266EPSS
Exploits2References1
OSV
OSV
added 2025/12/24 8:15 p.m.4 views

CVE-2019-25254

KYOCERA Net Admin 3.4.0906 contains a cross-site request forgery vulnerability that allows attackers to create administrative users without proper request validation. Attackers can craft malicious web pages that automatically submit forms to add new admin accounts with predefined credentials when...

8.8CVSS5.7AI score0.00266EPSS
Exploits2References3
NVD
NVD
added 2025/12/24 8:15 p.m.10 views

CVE-2019-25254

KYOCERA Net Admin 3.4.0906 contains a cross-site request forgery vulnerability that allows attackers to create administrative users without proper request validation. Attackers can craft malicious web pages that automatically submit forms to add new admin accounts with predefined credentials when...

8.8CVSS0.00266EPSS
Exploits2References3
NVD
NVD
added 2025/12/24 8:15 p.m.6 views

CVE-2019-25253

KYOCERA Net Admin 3.4.0906 contains an XML External Entity XXE injection vulnerability in the Multi-Set Template Editor that allows unauthenticated attackers to read arbitrary system files. Attackers can craft a malicious XML file with external entity references to retrieve sensitive configuratio...

7.5CVSS0.00754EPSS
Exploits2References3
OSV
OSV
added 2025/12/24 8:15 p.m.5 views

CVE-2019-25253

KYOCERA Net Admin 3.4.0906 contains an XML External Entity XXE injection vulnerability in the Multi-Set Template Editor that allows unauthenticated attackers to read arbitrary system files. Attackers can craft a malicious XML file with external entity references to retrieve sensitive configuratio...

7.1CVSS5.9AI score0.00754EPSS
Exploits2References3
Rows per page
Query Builder