Web Stack Security Vulnerabilities and Issues — Web Stack CVE List

PrinterlogicWeb Stack

9 matches found

CVE•added 2022/02/01 10:8 p.m.•85 views

CVE-2021-42638

PrinterLogic Web Stack 19.1.1.13 SP9 and earlier is affected by a pre-auth remote code execution vulnerability caused by unsanitized user input. The issue affects the PrinterLogic Web Stack and can lead to arbitrary code execution without authentication. The provided documents consistently descri...

9.3CVSS8.4AI score0.05662EPSS

CVE•added 2022/01/31 5:54 p.m.•67 views

CVE-2021-42635

PrinterLogic Web Stack 19.1.1.13 SP9 and earlier uses a hardcoded APP_KEY, enabling pre-auth remote code execution. Root cause: hardcoded credential/key in the stack leading to unauthenticated RCE. No public exploit details provided in the documents. Affected product: PrinterLogic Web Stack; impa...

9.3CVSS8.3AI score0.05702EPSS

CVE•added 2022/01/31 5:48 p.m.•66 views

CVE-2021-42631

PrinterLogic Web Stack (PrinterLogic, Inc.) is affected by CVE-2021-42631: versions 19.1.1.13 SP9 and earlier deserializes attacker-controlled input, enabling pre-auth remote code execution. Root cause is a deserialization flaw in the web stack that can be triggered without authentication, leadin...

9.3CVSS8.3AI score0.06316EPSS

CVE•added 2022/02/02 5:21 p.m.•66 views

CVE-2021-42641

CVE-2021-42641 affects PrinterLogic Web Stack versions 19.1.1.13 SP9 and earlier. It is described as an Insecure Direct Object Reference (IDOR) vulnerability that allows an unauthenticated attacker to disclose the usernames and email addresses of all users. The NVD entry provides a CVSS v3.1 base...

7.5CVSS7.5AI score0.02093EPSS

CVE•added 2022/02/02 5:10 p.m.•61 views

CVE-2021-42633

CVE-2021-42633 affects PrinterLogic Web Stack (versions 19.1.1.13 SP9 and earlier). It is a SQL injection vulnerability in the web stack that could allow an attacker to access additional audit records. No remediation details are provided in the supplied documents.

5.3CVSS5.5AI score0.02041EPSS

CVE•added 2022/02/02 5:14 p.m.•61 views

CVE-2021-42637

PrinterLogic Web Stack is affected. Versions 19.1.1.13 SP9 and below implement user-controlled input when crafting a URL, leading to a Server Side Request Forgery (SSRF) vulnerability. The issue is reported across multiple sources (NVD, Red Hat advisory, CNVD, CVE list, etc.). Root cause (as desc...

9.8CVSS9.4AI score0.02305EPSS

CVE•added 2022/02/02 5:23 p.m.•59 views

CVE-2021-42642

The CVE-2021-42642 entry describes a vulnerability in PrinterLogic Web Stack versions 19.1.1.13 SP9 and below, due to an Insecure Direct Object Reference (IDOR) that could disclose the plaintext console username and password for a printer. Affected product: PrinterLogic Web Stack. Root cause: IDO...

7.5CVSS7.5AI score0.01408EPSS

CVE•added 2022/02/02 5:18 p.m.•58 views

CVE-2021-42640

CVE-2021-42640 affects PrinterLogic Web Stack versions 19.1.1.13 SP9 and below. The vulnerability is an Insecure Direct Object Reference (IDOR) that allows an unauthenticated attacker to reassign drivers for any printer. Root cause details indicate improper access control on object references. Im...

9.1CVSS9.2AI score0.02093EPSS

CVE•added 2022/02/02 5:16 p.m.•57 views

CVE-2021-42639

PrinterLogic Web Stack (PrinterLogic Web Stack) versions 19.1.1.13 SP9 and earlier are affected by multiple reflected cross-site scripting (XSS) vulnerabilities. The vulnerability arises from attacker-controlled input being reflected back in the page without sanitization, enabling potential crede...

6.1CVSS6.2AI score0.01153EPSS