111 matches found
Sharp MFP Security Vulnerability
Sharp MFP is a series of multifunction printers from Sharp Japan. A security vulnerability exists in Sharp MFP that originates from storing sensitive information in plaintext in resources that may be accessed by other spheres of control...
CVE-2023-46327
Multiple MFPs multifunction printers provided by FUJIFILM Business Innovation Corp. and Xerox Corporation provide a facility to export the contents of their Address Book with encrypted form, but the encryption strength is insufficient. With the knowledge of the encryption process and the encrypti...
CVE-2023-46327
CVE-2023-46327 affects FUJIFILM Business Innovation Corp. and Xerox multifunction printers that export Address Book data with encrypted form but weak encryption. The connected sources confirm the root issue is insufficient encryption strength, enabling an attacker with knowledge of the encryption...
CVE-2023-46327
Multiple MFPs multifunction printers provided by FUJIFILM Business Innovation Corp. and Xerox Corporation provide a facility to export the contents of their Address Book with encrypted form, but the encryption strength is insufficient. With the knowledge of the encryption process and the encrypti...
CVE-2023-29984
Null pointer dereference vulnerability exists in multiple vendors MFPs and printers which implement Debut web server 1.2 or 1.3. Processing a specially crafted request may lead an affected product to a denial-of-service DoS condition. As for the affected products/models/versions, see the detailed...
Null pointer dereference
Null pointer dereference vulnerability exists in multiple vendors MFPs and printers which implement Debut web server 1.2 or 1.3. Processing a specially crafted request may lead an affected product to a denial-of-service DoS condition. As for the affected products/models/versions, see the detailed...
CVE-2023-29984
Null pointer dereference vulnerability exists in multiple vendors MFPs and printers which implement Debut web server 1.2 or 1.3. Processing a specially crafted request may lead an affected product to a denial-of-service DoS condition. As for the affected products/models/versions, see the detailed...
CVE-2023-29984
Null pointer dereference vulnerability exists in multiple vendors MFPs and printers which implement Debut web server 1.2 or 1.3. Processing a specially crafted request may lead an affected product to a denial-of-service DoS condition. As for the affected products/models/versions, see the detailed...
CVE-2023-29984
The CVE-2023-29984 issue is a NULL POINTER DEREFERENCE affecting multiple Brother and Fuji Xerox/Fujifilm MFPs/printers that implement the Debut web server (versions 1.2–1.3). Processing a specially crafted request can cause a Denial-of-Service (DoS). Affected products/versions are vendor-specifi...
CVE-2023-1329
A potential security vulnerability has been identified for certain HP multifunction printers MFPs. The vulnerability may lead to Buffer Overflow and/or Remote Code Execution when running HP Workpath solutions on potentially affected products...
CVE-2023-1329
CVE-2023-1329 affects certain HP multifunction printers (MFPs) when HP Workpath solutions are active. The issue is described as a buffer overflow that may enable remote code execution via network access, with high severity (CVSSv3.1: 9.8, C/H/I/A). Affected components are minimal in the public te...
SHARP Printer Command Injection Vulnerability (Dec 2022)
Multiple SHARP printers are prone to a command injection vulnerability. Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
CVE-2022-45796
Command injection vulnerability in nwinterface.html in SHARP multifunction printers MFPs's Digital Full-color Multifunctional System 202 or earlier, 120 or earlier, 600 or earlier, 121 or earlier, 500 or earlier, 402 or earlier, 790 or earlier, and Digital Multifunctional System Monochrome 200 or...
Command injection
Command injection vulnerability in nwinterface.html in SHARP multifunction printers MFPs's Digital Full-color Multifunctional System 202 or earlier, 120 or earlier, 600 or earlier, 121 or earlier, 500 or earlier, 402 or earlier, 790 or earlier, and Digital Multifunctional System Monochrome 200 or...
CVE-2022-45796
CVE-2022-45796 affects SHARP Digital Full-color Multifunctional System and related monochrome MFPs. The vulnerability is a command injection in the nw_interface.html component, enabling remote attackers with network access to execute arbitrary commands on affected devices. Affected versions inclu...
Design/Logic Flaw
A potential security vulnerability has been identified for certain HP multifunction printers MFPs. The vulnerability may lead to Denial of Service when running HP Workpath solutions on potentially affected products...
CVE-2022-41807
Missing authorization vulnerability exists in Kyocera Document Solutions MFPs and printers, which may allow a network-adjacent attacker to alter the product settings without authentication by sending a specially crafted request. Affected products/versions are as follows: TASKalfa 7550ci/6550ci,...
Cross site scripting
Stored cross-site scripting vulnerability in Kyocera Document Solutions MFPs and printers allows a remote authenticated attacker with an administrative privilege to inject arbitrary script. Affected products/versions are as follows: TASKalfa 7550ci/6550ci, TASKalfa 5550ci/4550ci/3550ci/3050ci,...
Authorization
Missing authorization vulnerability exists in Kyocera Document Solutions MFPs and printers, which may allow a network-adjacent attacker to alter the product settings without authentication by sending a specially crafted request. Affected products/versions are as follows: TASKalfa 7550ci/6550ci,...
CVE-2022-41830
CVE-2022-41830 describes a stored cross-site scripting vulnerability in Kyocera Document Solutions MFPs and printers. A remote authenticated attacker with administrative privileges can inject arbitrary script via the web interface. Affected products include TASKalfa and ECOSYS series (e.g., TASKa...