EUVD-2024-24415

Malicious code in bioql PyPI...

CVE-2024-27175 Local File Inclusion

Remote Command program allows an attacker to read any file using a Local File Inclusion vulnerability. An attacker can read any file on the printer. As for the affected products/models/versions, see the reference URL...

CVE-2024-27175

CVE-2024-27175 affects Toshiba e-STUDIO/MFP devices, where a Local File Inclusion vulnerability allows an attacker to read arbitrary files on the printer via unsafely processed input. The root cause is insufficient validation of filename input, enabling information disclosure via the device UI or...

CVE-2024-27172 Remote Code Execution

Remote Command program allows an attacker to get Remote Code Execution. As for the affected products/models/versions, see the reference URL...

CVE-2024-27172

CVE-2024-27172 affects Toshiba printers/MFPs (notably e‑STUDIO family) via the Remote Command program. The root cause is an OS Command Injection (CWE-78) affecting the Remote Command functionality, which can lead to arbitrary code execution (RCE) when an attacker can access the device. Public ref...

PT-2024-21706 · Unknown · Remote Command Program

Name of the Vulnerable Software and Affected Versions: Remote Command program affected versions not specified Description: The issue allows an attacker to achieve Remote Code Execution through the Remote Command program. Recommendations: At the moment, there is no information about a newer versio...

PT-2024-21708 · Toshiba · Toshiba Tec

Name of the Vulnerable Software and Affected Versions: Toshiba Tec products affected versions not specified Description: The issue allows an attacker to achieve Remote Code Execution through the Remote Command program. This can be executed in combination with other vulnerabilities, making it...