An issue exists on Canon LBP6650, LBP3370, LBP3460, and LBP7750C devices. It is possible to bypass the Administrator Mode authentication for /tlogin.cgi via vectors involving frame.cgi?page=DevStatus. NOTE: the vendor reportedly responded that this issue occurs when a customer keeps the default settings without using the countermeasures and best practices shown in the documentation
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
canon lbp3370_firmware - |
||
canon lbp3460_firmware - |
||
canon lbp7750c_firmware - |
||
canon lbp6650_firmware - |