9 matches found
CVE-2019-20460
An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. POST requests don't require anti-CSRF tokens or other mechanisms for validating that the request is from a legitimate source. In addition, CSRF attacks can be used to send text directly to the RAW printer interface. For...
CVE-2019-20459
An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. With the SNMPv1 public community, all values can be read, and with the epson community, all the changeable values can be written/updated, as demonstrated by permanently disabling the network card or changing the DNS...
Epson Express Home XP255 安全漏洞
The Epson Express Home XP255 is a printer from Epson Japan. A security vulnerability exists in the Epson Express Home XP255 version 20.08, which stems from a failure to validate the legitimacy of a POST request via a CSRF token or other mechanism, making it susceptible to cross-site request forge...
PT-2024-10734 · Epson · Epson Expression Home Xp255
Name of the Vulnerable Software and Affected Versions: Epson Expression Home XP255 version 20.08.FM10I8 Description: An issue was discovered where the device comes without a password and the user is not prompted to set one up, allowing anyone to access the web admin panel and become admin without...
CVE-2019-20458
CVE-2019-20458 affects Epson Expression Home XP255 (version 20.08.FM10I8). The root cause is that the device ships with no password and does not prompt the user to set one, enabling anyone who can reach the web admin panel to gain admin privileges. Public sources corroborate that this results in ...
CVE-2019-20458
An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. By default, the device comes and functions without a password. The user is at no point prompted to set up a password on the device leaving a number of devices without a password. In this case, anyone connecting to the we...
Epson Express Home XP255 安全漏洞
The Epson Express Home XP255 is a printer from the Japanese company Epson Epson. A security vulnerability exists in the Epson Express Home XP255 version 20.08, which stems from lax management of access rights to the public community for SNMPv1 and the epson community, which allows unauthorized...
CVE-2019-20459
An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. With the SNMPv1 public community, all values can be read, and with the epson community, all the changeable values can be written/updated, as demonstrated by permanently disabling the network card or changing the DNS...
Epson Express Home XP255 安全漏洞
The Epson Express Home XP255 is a printer from the Japanese company Epson Epson. The Epson Express Home XP255 has a security vulnerability that originates from the fact that anyone connecting to the Web administration panel can become an administrator without using any credentials...