Unrestricted access to the log downloader functionality in EPSON EPS TSE Server 8 (21.0.11) allows an unauthenticated malicious user to remotely retrieve administrative hashed credentials via the maintenance/troubleshoot.php?download=1 URI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
epson eps_tse_server_8_firmware 21.0.11 |