exploitDog

CVE-2017-12861

Опубликовано: 10 окт. 2017

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

The Epson "EasyMP" software is designed to remotely stream a users computer to supporting projectors.These devices are authenticated using a unique 4-digit code, displayed on-screen - ensuring only those who can view it are streaming.All Epson projectors supporting the "EasyMP" software are vulnerable to a brute-force vulnerability, allowing any attacker on the network to remotely control and stream to the vulnerable device

Ссылки

https://rhinosecuritylabs.com/research/epson-easymp-remote-projection-vulnerabilities/
Third Party Advisory
https://rhinosecuritylabs.com/research/epson-easymp-remote-projection-vulnerabilities/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:epson:easymp:2.86:*:*:*:*:*:*:*

EPSS

Процентиль: 88%

0.03717

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-521

Связанные уязвимости

GHSA-xhf5-2xwr-3gp9

CVSS3: 9.8

github

больше 3 лет назад

The Epson "EasyMP" software is designed to remotely stream a users computer to supporting projectors.These devices are authenticated using a unique 4-digit code, displayed on-screen - ensuring only those who can view it are streaming.All Epson projectors supporting the "EasyMP" software are vulnerable to a brute-force vulnerability, allowing any attacker on the network to remotely control and stream to the vulnerable device

EPSS

Процентиль: 88%

0.03717

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-521