Lucene search
+L

250 matches found

Positive Technologies
Positive Technologies
added 2025/06/09 12:0 a.m.7 views

PT-2025-24442

Name of the Vulnerable Software and Affected Versions Konica Minolta bizhub versions up to 20250202 Description A problematic issue was found in the Display MFP Information List component. The manipulation of the Model Name argument leads to cross-site scripting. It is possible to initiate the...

5.4CVSS4.7AI score0.00241EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/23 7:31 a.m.12 views

CVE-2024-48870

Sharp and Toshiba Tec MFPs improperly validate input data in URI data registration, resulting in a stored cross-site scripting vulnerability. If crafted input is stored by an administrative user, malicious script may be executed on the web browsers of other victim users...

6.2CVSS6.1AI score0.00322EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:16 a.m.9 views

CVE-2022-29588

Konica Minolta bizhub MFP devices before 2022-04-14 use cleartext password storage for the /var/log/nginx/html/ADMINPASS and /etc/shadow files...

7.5CVSS7.3AI score0.01662EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:46 p.m.9 views

CVE-2022-29587

Konica Minolta bizhub MFP devices before 2022-04-14 have an internal Chromium browser that executes with root aka superuser access privileges...

4.7CVSS7.1AI score0.00393EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:44 a.m.8 views

CVE-2019-6326

HP Color LaserJet Pro M280-M281 Multifunction Printer series before v. 20190419, HP LaserJet Pro MFP M28-M31 Printer series before v. 20190426 may have embedded web server attributes which may be potentially vulnerable to Buffer Overflow...

7.2CVSS6.8AI score0.01712EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:44 a.m.8 views

CVE-2019-6324

HP Color LaserJet Pro M280-M281 Multifunction Printer series before v. 20190419, HP LaserJet Pro MFP M28-M31 Printer series before v. 20190426 may have an embedded web server potentially vulnerable to stored XSS in wireless configuration page...

4.8CVSS5.8AI score0.00701EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/03/17 12:0 a.m.12 views

The vulnerability of the Internet Printing Protocol (IPP) implementation in multifunctional HP LaserJet MFP devices allows a perpetrator to cause service interruptions.

The vulnerability of the Internet Printing Protocol IPP implementation in microprogrammed multifunctional devices like HP LaserJet MFP is related to improper handling of unexpected types of data. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending...

5.3CVSS5.5AI score0.00425EPSS
Exploits0References2Affected Software12
OSV
OSV
added 2025/03/14 2:15 p.m.5 views

CVE-2025-2268

The HP LaserJet MFP M232-M237 Printer Series may be vulnerable to a denial of service attack when a specially crafted request message is sent via Internet Printing Protocol IPP...

7.5CVSS5.7AI score0.00425EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/02/25 12:0 a.m.15 views

Siemens SIMATIC Devices Linux Kernel Stack-based Buffer Overflow (CVE-2022-2078)

A vulnerability was found in the Linux kernel's nftsetdescconcatparse function .This flaw allows an attacker to trigger a buffer overflow via nftsetdescconcatparse , causing a denial of service and possibly to run code. This plugin only works with Tenable.ot. Please visit...

5.5CVSS6.9AI score0.01013EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/02/18 5:20 a.m.4 views

CVE-2024-45320

Out-of-bounds write vulnerability exists in DocuPrint CP225w 01.22.01 and earlier, DocuPrint CP228w 01.22.01 and earlier, DocuPrint CM225fw 01.10.01 and earlier, and DocuPrint CM228fw 01.10.01 and earlier. If an affected MFP processes a specially crafted printer job file, a denial-of-service DoS...

6.5CVSS6.9AI score0.00238EPSS
Exploits0References2
Rapid7 Blog
Rapid7 Blog
added 2025/02/14 2:0 p.m.5 views

Xerox Versalink C7025 Multifunction Printer: Pass-Back Attack Vulnerabilities (FIXED)

During security testing, Rapid7 discovered that Xerox Versalink C7025 Multifunction printers MFPs were vulnerable to pass-back attacks. The affected products identified were: Xerox Versalink MFPs Firmware Version: 57.69.91 and earlier This issue has been assigned the following CVEs: CVE-2024-1251...

7.6CVSS7.4AI score0.00923EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 8:29 a.m.12 views

CVE-2024-47549

Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, which may allow contamination of unintended data to HTTP response headers. Accessing a crafted URL which points to an affected product may cause malicious script executed on the web browser...

7.4CVSS6.8AI score0.00335EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 2:27 a.m.11 views

CVE-2024-42420

Sharp and Toshiba Tec MFPs contain multiple Out-of-bounds Read vulnerabilities, due to improper processing of keyword search input and improper processing of SOAP messages. Crafted HTTP requests may cause affected products crashed...

7.5CVSS7AI score0.00723EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/06 12:0 a.m.5 views

PT-2024-38650 · Kofax · Totalagility

Name of the Vulnerable Software and Affected Versions: Tungsten Automation Kofax TotalAgility versions all through 7.9.0.25.0.954 Description: The issue is a Reflected XSS vulnerability that can be exploited through manipulation of the mfpConnectionId parameter in a form sent to endpoints...

5.3CVSS6.2AI score0.00503EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/11/08 12:0 a.m.17 views

Ricoh MFP and Printer Products Buffer Overflow (ricoh-2024-000011)

The version of the remote Ricoh MFP or printer is affected by a buffer overflow vulnerability. - Stack-based buffer overflow vulnerability exists in multiple Ricoh laser printers and MFPs which implement Web Image Monitor. If this vulnerability is exploited, receiving a specially crafted request...

7.7CVSS8.5AI score0.00703EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/10/31 12:0 a.m.8 views

Ricoh MFP 安全漏洞

Ricoh MFP is a series of printers from Ricoh Japan. A security vulnerability exists in Ricoh MFP that originates from a buffer overflow issue contained in WebImageMonitor that could lead to arbitrary code execution...

7.7CVSS8.1AI score0.00703EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/10/28 8:33 a.m.50 views

Multiple vulnerabilities in Sharp and Toshiba Tec MFPs

Overview MFPs multifunction printers provided by Sharp and Toshiba Tec Corporation contain multiple vulnerabilites listed below. Out-of-bounds Read CWE-125 CVE-2024-42420 Out-of-bounds read vulnerabilities coming from improper processing of keyword search input and improper processing of SOAP...

9.8CVSS6AI score0.00723EPSS
Exploits0References18
CNNVD
CNNVD
added 2024/10/25 12:0 a.m.6 views

Sharp MFP 安全漏洞

Sharp MFP is a series of multifunction printers from Sharp Japan. A security vulnerability exists in Sharp MFP that stems from mishandling of keyword search inputs and SOAP messages, contains multiple out-of-bounds read vulnerabilities, and a carefully crafted HTTP request could cause the affecte...

7.5CVSS8.9AI score0.00723EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/10/25 12:0 a.m.9 views

PT-2024-33252 · Sharp +1 · Sharp Mfps +1

Name of the Vulnerable Software and Affected Versions: Sharp and Toshiba Tec MFPs affected versions not specified Description: The issue is related to improper validation of input data in URI data registration, resulting in a stored cross-site scripting vulnerability. If crafted input is stored b...

6.2CVSS6.1AI score0.00322EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/10/25 12:0 a.m.6 views

Sharp MFP 安全漏洞

Sharp MFP is a series of multifunction printers from Sharp Japan. A security vulnerability exists in Sharp MFP that stems from not properly handling URL data in HTTP PUT requests, resulting in a path traversal vulnerability that could retrieve unexpected internal files when processing a carefully...

5.3CVSS9AI score0.00536EPSS
Exploits0References3
Rows per page
Query Builder