Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
epson vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-18959
An issue exists on Epson WorkForce WF-2861 10.48 LQ22I3, 10.51.LQ20I6 and 10.52.LQ17IA devices. On the 'Air Print Setting' web page, if the data for 'Bonjour Service Location' at /PRESENTATION/BONJOUR is more than 251 bytes when sending data for Air Print Sett...
Epson Epson Workforce Wf-2861 Firmware 10.52.lq17ia
Epson Epson Workforce Wf-2861 Firmware 10.48 Lq22i3
Epson Epson Workforce Wf-2861 Firmware 10.51.lq20i6
7.5
CVSSv3
CVE-2018-19232
The web service on Epson WorkForce WF-2861 10.48 LQ22I3(Recovery-mode), WF-2861 10.51.LQ20I6, and WF-2861 10.52.LQ17IA devices allows remote malicious users to cause a denial of service via a FIRMWAREUPDATE GET request, as demonstrated by the /DOWN/FIRMWAREUPDATE/ROM1 URI.
Epson Epson Workforce Wf-2861 Firmware 10.52.lq17ia
Epson Epson Workforce Wf-2861 Firmware 10.51.lq20i6
Epson Epson Workforce Wf-2861 Firmware 10.48 Lq22i3
7.8
CVSSv3
CVE-2020-5681
Untrusted search path vulnerability in self-extracting files created by EpsonNet SetupManager versions 2.2.14 and previous versions, and Offirio SynergyWare PrintDirector versions 1.6x/1.6y and previous versions allows an malicious user to gain privileges via a Trojan horse DLL i...
Epson Epsonnet Setupmanager
Epson Offirio Synergyware Printdirector
6.1
CVSSv3
CVE-2018-5550
Versions of Epson AirPrint released prior to January 19, 2018 contain a reflective cross-site scripting (XSS) vulnerability, which can allow untrusted users on the network to hijack a session cookie or perform other reflected XSS attacks on a currently logged-on user.
Epson Airprint
5.5
CVSSv3
CVE-2020-9453
In Epson iProjection v2.30, the driver file EMP_MPAU.sys allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9C402406 and IOCtl 0x9C40240A. (0x9C402402 has only a NULL pointer derefer...
Epson Iprojection
5.5
CVSSv3
CVE-2020-9014
In Epson iProjection v2.30, the driver file (EMP_NSAU.sys) allows local users to cause a denial of service (BSOD) via crafted input to the virtual audio device driver with IOCTL 0x9C402402, 0x9C402406, or 0x9C40240A. \Device\EMPNSAUIO and \DosDevices\EMPNSAU are similarly affecte...
Epson Iprojection
9.8
CVSSv3
CVE-2020-28929
Unrestricted access to the log downloader functionality in EPSON EPS TSE Server 8 (21.0.11) allows an unauthenticated malicious user to remotely retrieve administrative hashed credentials via the maintenance/troubleshoot.php?download=1 URI.
Epson Eps Tse Server 8 Firmware 21.0.11
5.4
CVSSv3
CVE-2020-28930
A Cross-Site Scripting (XSS) issue in the 'update user' and 'delete user' functionalities in settings/users.php in EPSON EPS TSE Server 8 (21.0.11) allows an authenticated malicious user to inject a JavaScript payload in the user management page that is execut...
Epson Eps Tse Server 8 Firmware 21.0.11
8.8
CVSSv3
CVE-2020-28931
Lack of an anti-CSRF token in the entire administrative interface in EPSON EPS TSE Server 8 (21.0.11) allows an unauthenticated malicious user to force an administrator to execute external POST requests by visiting a malicious website.
Epson Eps Tse Server 8 Firmware 21.0.11
9.1
CVSSv3
CVE-2020-6091
An exploitable authentication bypass vulnerability exists in the ESPON Web Control functionality of Epson EB-1470Ui MAIN: 98009273ESWWV107 MAIN2: 8X7325WWV303. A specially crafted series of HTTP requests can cause authentication bypass resulting in information disclosure. An atta...
Epson Eb-1470ui Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »