Описание
Cross-site scripting vulnerability in Aficio SP 4210N firmware versions prior to Web Support 1.05 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script.
Ссылки
- Third Party Advisory
- ProductVendor Advisory
- Release NotesVendor Advisory
- Third Party Advisory
- ProductVendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.05 (исключая)
Одновременно
cpe:2.3:o:ricoh:aficio_sp_4210n_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:aficio_sp_4210n:-:*:*:*:*:*:*:*
EPSS
Процентиль: 60%
0.00396
Низкий
4.8 Medium
CVSS3
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 4.8
github
около 3 лет назад
Cross-site scripting vulnerability in Aficio SP 4210N firmware versions prior to Web Support 1.05 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script.
EPSS
Процентиль: 60%
0.00396
Низкий
4.8 Medium
CVSS3
Дефекты
CWE-79
CWE-79