exploitDog

CVE-2023-34260

Опубликовано: 03 нояб. 2023

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow a denial of service (service outage) via /wlmdeu%2f%2e%2e%2f%2e%2e followed by a directory reference such as %2fetc%00index.htm to try to read the /etc directory.

Ссылки

https://sec-consult.com/vulnerability-lab/
Third Party Advisory
https://seclists.org/fulldisclosure/2023/Jul/15
Exploit
Mailing List
Third Party Advisory
https://sec-consult.com/vulnerability-lab/
Third Party Advisory
https://seclists.org/fulldisclosure/2023/Jul/15
Exploit
Mailing List
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:kyocera:d-copia253mf_plus_firmware:*:*:*:*:*:*:*:*

Версия до 2vg_s000.002.561 (включая)

cpe:2.3:h:kyocera:d-copia253mf_plus:-:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03408

Низкий

7.5 High

CVSS3

Дефекты

CWE-22

Связанные уязвимости

GHSA-4m82-wpjr-2587

CVSS3: 7.5

github

больше 2 лет назад

Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow a denial of service (service outage) via /wlmdeu%2f%2e%2e%2f%2e%2e followed by a directory reference such as %2fetc%00index.htm to try to read the /etc directory.

EPSS

Процентиль: 87%

0.03408

Низкий

7.5 High

CVSS3

Дефекты

CWE-22