Описание
Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow /wlmdeu%2f%2e%2e%2f%2e%2e directory traversal to read arbitrary files on the filesystem, even files that require root privileges. NOTE: this issue exists because of an incomplete fix for CVE-2020-23575.
Ссылки
- Third Party Advisory
- ExploitMailing ListThird Party Advisory
- Third Party Advisory
- ExploitMailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2vg_s000.002.561 (включая)
Одновременно
cpe:2.3:o:kyocera:d-copia253mf_plus_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:kyocera:d-copia253mf_plus:-:*:*:*:*:*:*:*
EPSS
Процентиль: 100%
0.92452
Критический
4.9 Medium
CVSS3
Дефекты
CWE-22
CWE-22
Связанные уязвимости
CVSS3: 4.9
github
больше 2 лет назад
Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow /wlmdeu%2f%2e%2e%2f%2e%2e directory traversal to read arbitrary files on the filesystem, even files that require root privileges. NOTE: this issue exists because of an incomplete fix for CVE-2020-23575.
EPSS
Процентиль: 100%
0.92452
Критический
4.9 Medium
CVSS3
Дефекты
CWE-22
CWE-22