MidnightBSD

Advisories for epson

CVE-2010-3920 MEDIUM

The Seiko Epson printer driver installers for LP-S9000 before 4.1.11 and LP-S7100 before 4.1.7, or as downloaded from the vendor between May 2010 and 20101125, set weak permissions for the "C:\Program Files" folder, which might allow local users to bypass intended access restrictions and create or modify arbitrary files and directories.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
epson lp-s9000_driver_4.1.11 *
epson lp-s7100_driver_4.1.0 *
epson lp-s7100_driver_4.1.7 *
epson lp-s9000_driver_4.1.0 *
CVE-2015-6034 MEDIUM

EPSON Network Utility 4.10 uses weak permissions (Everyone: Full Control) for eEBSVC.exe, which allows local users to gain privileges via a Trojan horse file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
epson network_utility 4.10
CVE-2017-12860 MEDIUM

The Epson "EasyMP" software is designed to remotely stream a users computer to supporting projectors.These devices are authenticated using a unique 4-digit code, displayed on-screen - ensuring only those who can view it are streaming.In addition to the password, each projector has a hardcoded "backdoor" code (2270), which authenticates to all devices.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-798,

Products Affected

Vendor Product Version
epson easymp 2.86
CVE-2017-12861 HIGH

The Epson "EasyMP" software is designed to remotely stream a users computer to supporting projectors.These devices are authenticated using a unique 4-digit code, displayed on-screen - ensuring only those who can view it are streaming.All Epson projectors supporting the "EasyMP" software are vulnerable to a brute-force vulnerability, allowing any attacker on the network to remotely control and stream to the vulnerable device

CVSS 2.0

Severity: HIGH

Problem Type: CWE-521,

Products Affected

Vendor Product Version
epson easymp 2.86
CVE-2017-6443 MEDIUM

Cross-site scripting (XSS) vulnerability in EPSON TMNet WebConfig 1.00 allows remote attackers to inject arbitrary web script or HTML via the W_AD1 parameter to Forms/oadmin_1.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
epson tmnet_webconfig 1.00
CVE-2018-0688 MEDIUM

Open redirect vulnerability in SEIKO EPSON printers and scanners (DS-570W firmware versions released prior to 2018 March 13, DS-780N firmware versions released prior to 2018 March 13, EP-10VA firmware versions released prior to 2017 September 4, EP-30VA firmware versions released prior to 2017 June 19, EP-707A firmware versions released prior to 2017 August 1, EP-708A firmware versions released prior to 2017 August 7, EP-709A firmware versions released prior to 2017 June 12, EP-777A firmware versions released prior to 2017 August 1, EP-807AB/AW/AR firmware versions released prior to 2017 August 1, EP-808AB/AW/AR firmware versions released prior to 2017 August 7, EP-879AB/AW/AR firmware versions released prior to 2017 June 12, EP-907F firmware versions released prior to 2017 August 1, EP-977A3 firmware versions released prior to 2017 August 1, EP-978A3 firmware versions released prior to 2017 August 7, EP-979A3 firmware versions released prior to 2017 June 12, EP-M570T firmware versions released prior to 2017 September 6, EW-M5071FT firmware versions released prior to 2017 November 2, EW-M660FT firmware versions released prior to 2018 April 19, EW-M770T firmware versions released prior to 2017 September 6, PF-70 firmware versions released prior to 2018 April 20, PF-71 firmware versions released prior to 2017 July 18, PF-81 firmware versions released prior to 2017 September 14, PX-048A firmware versions released prior to 2017 July 4, PX-049A firmware versions released prior to 2017 September 11, PX-437A firmware versions released prior to 2017 July 24, PX-M350F firmware versions released prior to 2018 February 23, PX-M5040F firmware versions released prior to 2017 November 20, PX-M5041F firmware versions released prior to 2017 November 20, PX-M650A firmware versions released prior to 2017 October 17, PX-M650F firmware versions released prior to 2017 October 17, PX-M680F firmware versions released prior to 2017 June 29, PX-M7050F firmware versions released prior to 2017 October 13, PX-M7050FP firmware versions released prior to 2017 October 13, PX-M7050FX firmware versions released prior to 2017 November 7, PX-M7070FX firmware versions released prior to 2017 April 27, PX-M740F firmware versions released prior to 2017 December 4, PX-M741F firmware versions released prior to 2017 December 4, PX-M780F firmware versions released prior to 2017 June 29, PX-M781F firmware versions released prior to 2017 June 27, PX-M840F firmware versions released prior to 2017 November 16, PX-M840FX firmware versions released prior to 2017 December 8, PX-M860F firmware versions released prior to 2017 October 25, PX-S05B/W firmware versions released prior to 2018 March 9, PX-S350 firmware versions released prior to 2018 February 23, PX-S5040 firmware versions released prior to 2017 November 20, PX-S7050 firmware versions released prior to 2018 February 21, PX-S7050PS firmware versions released prior to 2018 February 21, PX-S7050X firmware versions released prior to 2017 November 7, PX-S7070X firmware versions released prior to 2017 April 27, PX-S740 firmware versions released prior to 2017 December 3, PX-S840 firmware versions released prior to 2017 November 16, PX-S840X firmware versions released prior to 2017 December 8, PX-S860 firmware versions released prior to 2017 December 7) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the web interface of the affected product.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
epson px-s05b_firmware *
epson px-s7070x_firmware *
epson ep-879ar_firmware *
epson px-m350f_firmware *
epson ep-777a_firmware *
epson ew-m660ft_firmware *
epson ep-978a3_firmware *
epson px-m7050f_firmware *
epson px-s840_firmware *
epson px-048a_firmware *
epson px-s740_firmware *
epson px-s7050_firmware *
epson ep-m570t_firmware *
epson px-s860_firmware *
epson ep-808ab_firmware *
epson px-m5041f_firmware *
epson px-m7070fx_firmware *
epson px-m781f_firmware *
epson px-m840fx_firmware *
epson ep-709a_firmware *
epson ew-m5071ft_firmware *
epson px-m7050fp_firmware *
epson px-m650f_firmware *
epson ep-807ab_firmware *
epson ep-807aw_firmware *
epson px-s05w_firmware *
epson px-s5040_firmware *
epson ds-780n_firmware *
epson ep-10va_firmware *
epson ep-30va_firmware *
epson px-m7050fx_firmware *
epson px-m840f_firmware *
epson px-s7050ps_firmware *
epson ep-808aw_firmware *
epson px-m740f_firmware *
epson ep-707a_firmware *
epson pf-81_firmware *
epson px-m860f_firmware *
epson ep-708a_firmware *
epson pf-71_firmware *
epson px-437a_firmware *
epson ep-879ab_firmware *
epson pf-70_firmware *
epson ew-m770t_firmware *
epson ep-807ar_firmware *
epson px-049a_firmware *
epson ep-907f_firmware *
epson ds-570w_firmware *
epson px-m680f_firmware *
epson px-m650a_firmware *
epson px-s7050x_firmware *
epson ep-977a3_firmware *
epson px-s350_firmware *
epson ep-808ar_firmware *
epson ep-979a3_firmware *
epson px-s840x_firmware *
epson ep-879aw_firmware *
epson px-m5040f_firmware *
CVE-2018-0689 MEDIUM

HTTP header injection vulnerability in SEIKO EPSON printers and scanners (DS-570W firmware versions released prior to 2018 March 13, DS-780N firmware versions released prior to 2018 March 13, EP-10VA firmware versions released prior to 2017 September 4, EP-30VA firmware versions released prior to 2017 June 19, EP-707A firmware versions released prior to 2017 August 1, EP-708A firmware versions released prior to 2017 August 7, EP-709A firmware versions released prior to 2017 June 12, EP-777A firmware versions released prior to 2017 August 1, EP-807AB/AW/AR firmware versions released prior to 2017 August 1, EP-808AB/AW/AR firmware versions released prior to 2017 August 7, EP-879AB/AW/AR firmware versions released prior to 2017 June 12, EP-907F firmware versions released prior to 2017 August 1, EP-977A3 firmware versions released prior to 2017 August 1, EP-978A3 firmware versions released prior to 2017 August 7, EP-979A3 firmware versions released prior to 2017 June 12, EP-M570T firmware versions released prior to 2017 September 6, EW-M5071FT firmware versions released prior to 2017 November 2, EW-M660FT firmware versions released prior to 2018 April 19, EW-M770T firmware versions released prior to 2017 September 6, PF-70 firmware versions released prior to 2018 April 20, PF-71 firmware versions released prior to 2017 July 18, PF-81 firmware versions released prior to 2017 September 14, PX-048A firmware versions released prior to 2017 July 4, PX-049A firmware versions released prior to 2017 September 11, PX-437A firmware versions released prior to 2017 July 24, PX-M350F firmware versions released prior to 2018 February 23, PX-M5040F firmware versions released prior to 2017 November 20, PX-M5041F firmware versions released prior to 2017 November 20, PX-M650A firmware versions released prior to 2017 October 17, PX-M650F firmware versions released prior to 2017 October 17, PX-M680F firmware versions released prior to 2017 June 29, PX-M7050F firmware versions released prior to 2017 October 13, PX-M7050FP firmware versions released prior to 2017 October 13, PX-M7050FX firmware versions released prior to 2017 November 7, PX-M7070FX firmware versions released prior to 2017 April 27, PX-M740F firmware versions released prior to 2017 December 4, PX-M741F firmware versions released prior to 2017 December 4, PX-M780F firmware versions released prior to 2017 June 29, PX-M781F firmware versions released prior to 2017 June 27, PX-M840F firmware versions released prior to 2017 November 16, PX-M840FX firmware versions released prior to 2017 December 8, PX-M860F firmware versions released prior to 2017 October 25, PX-S05B/W firmware versions released prior to 2018 March 9, PX-S350 firmware versions released prior to 2018 February 23, PX-S5040 firmware versions released prior to 2017 November 20, PX-S7050 firmware versions released prior to 2018 February 21, PX-S7050PS firmware versions released prior to 2018 February 21, PX-S7050X firmware versions released prior to 2017 November 7, PX-S7070X firmware versions released prior to 2017 April 27, PX-S740 firmware versions released prior to 2017 December 3, PX-S840 firmware versions released prior to 2017 November 16, PX-S840X firmware versions released prior to 2017 December 8, PX-S860 firmware versions released prior to 2017 December 7) may allow a remote attackers to lead a user to a phishing site or execute an arbitrary script on the user's web browser.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-113,

Products Affected

Vendor Product Version
epson px-s05b_firmware *
epson px-s7070x_firmware *
epson ep-879ar_firmware *
epson px-m350f_firmware *
epson ep-777a_firmware *
epson ew-m660ft_firmware *
epson ep-978a3_firmware *
epson px-m7050f_firmware *
epson px-s840_firmware *
epson px-048a_firmware *
epson px-s740_firmware *
epson px-s7050_firmware *
epson ep-m570t_firmware *
epson px-s860_firmware *
epson ep-808ab_firmware *
epson px-m5041f_firmware *
epson px-m7070fx_firmware *
epson px-m781f_firmware *
epson px-m840fx_firmware *
epson ep-709a_firmware *
epson ew-m5071ft_firmware *
epson px-m7050fp_firmware *
epson px-m650f_firmware *
epson ep-807ab_firmware *
epson ep-807aw_firmware *
epson px-s05w_firmware *
epson px-s5040_firmware *
epson ds-780n_firmware *
epson ep-10va_firmware *
epson ep-30va_firmware *
epson px-m7050fx_firmware *
epson px-m840f_firmware *
epson px-s7050ps_firmware *
epson ep-808aw_firmware *
epson px-m740f_firmware *
epson ep-707a_firmware *
epson pf-81_firmware *
epson px-m860f_firmware *
epson ep-708a_firmware *
epson pf-71_firmware *
epson px-437a_firmware *
epson ep-879ab_firmware *
epson pf-70_firmware *
epson ew-m770t_firmware *
epson ep-807ar_firmware *
epson px-049a_firmware *
epson ep-907f_firmware *
epson ds-570w_firmware *
epson px-m680f_firmware *
epson px-m650a_firmware *
epson px-s7050x_firmware *
epson ep-977a3_firmware *
epson px-s350_firmware *
epson ep-808ar_firmware *
epson ep-979a3_firmware *
epson px-s840x_firmware *
epson ep-879aw_firmware *
epson px-m5040f_firmware *
CVE-2018-14899 MEDIUM

On the EPSON WF-2750 printer with firmware JP02I2, the Web interface AirPrint Setup page is vulnerable to HTML Injection that can redirect users to malicious sites.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
epson wf-2750_firmware jp02l2
CVE-2018-14900 MEDIUM

On EPSON WF-2750 printers with firmware JP02I2, there is no filtering of print jobs. Remote attackers can send print jobs directly to the printer via TCP port 9100.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-417,

Products Affected

Vendor Product Version
epson wf-2750_firmware jp02l2
CVE-2018-14901 MEDIUM

The EPSON iPrint application 6.6.3 for Android contains hard-coded API and Secret keys for the Dropbox, Box, Evernote and OneDrive services.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-798,

Products Affected

Vendor Product Version
epson iprint 6.6.3
CVE-2018-14902 MEDIUM

The ContentProvider in the EPSON iPrint application 6.6.3 for Android does not properly restrict data access. This allows an attacker's application to read scanned documents.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
epson iprint 6.6.3
CVE-2018-14903 MEDIUM

EPSON WF-2750 printers with firmware JP02I2 do not properly validate files before running updates, which allows remote attackers to cause a printer malfunction or send malicious data to the printer.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-346,

Products Affected

Vendor Product Version
epson wf-2750_firmware jp02l2
CVE-2018-18959 MEDIUM

An issue was discovered on Epson WorkForce WF-2861 10.48 LQ22I3, 10.51.LQ20I6 and 10.52.LQ17IA devices. On the 'Air Print Setting' web page, if the data for 'Bonjour Service Location' at /PRESENTATION/BONJOUR is more than 251 bytes when sending data for Air Print Setting, then the device no longer functions until a reboot.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
epson epson_workforce_wf-2861_firmware 10.48_lq22i3
epson epson_workforce_wf-2861_firmware 10.51.lq20i6
epson epson_workforce_wf-2861_firmware 10.52.lq17ia
CVE-2018-18960 MEDIUM

An issue was discovered on Epson WorkForce WF-2861 10.48 LQ22I3, 10.51.LQ20I6 and 10.52.LQ17IA devices. They use SNMP to find certain devices on the network, but the default version is v2c, allowing an amplification attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
epson epson_workforce_wf-2861_firmware 10.48_lq22i3
epson epson_workforce_wf-2861_firmware 10.51.lq20i6
epson epson_workforce_wf-2861_firmware 10.52.lq17ia
CVE-2018-19232 MEDIUM

The web service on Epson WorkForce WF-2861 10.48 LQ22I3(Recovery-mode), WF-2861 10.51.LQ20I6, and WF-2861 10.52.LQ17IA devices allows remote attackers to cause a denial of service via a FIRMWAREUPDATE GET request, as demonstrated by the /DOWN/FIRMWAREUPDATE/ROM1 URI.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
epson epson_workforce_wf-2861_firmware 10.48_lq22i3
epson epson_workforce_wf-2861_firmware 10.51.lq20i6
epson epson_workforce_wf-2861_firmware 10.52.lq17ia
CVE-2018-19248 MEDIUM

The web service on Epson WorkForce WF-2861 10.48 LQ22I3(Recovery-mode), WF-2861 10.51.LQ20I6, and WF-2861 10.52.LQ17IA devices allows remote attackers to upload a firmware file and reset the printer without authentication by making a request to the /DOWN/FIRMWAREUPDATE/ROM1 URI and a POST request to the /FIRMWAREUPDATE URI.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-306,

Products Affected

Vendor Product Version
epson epson_workforce_wf-2861_firmware 10.48_lq22i3
epson epson_workforce_wf-2861_firmware 10.51.lq20i6
epson epson_workforce_wf-2861_firmware 10.52.lq17ia
CVE-2018-5550 MEDIUM

Versions of Epson AirPrint released prior to January 19, 2018 contain a reflective cross-site scripting (XSS) vulnerability, which can allow untrusted users on the network to hijack a session cookie or perform other reflected XSS attacks on a currently logged-on user.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
epson airprint *
CVE-2020-12695 HIGH

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:H 2.2 4.7

CVSS 2.0

Severity: HIGH

Problem Type: CWE-276,

Products Affected

Vendor Product Version
hp envy_120_cz022a -
hp envy_4500_d3p93a -
canonical ubuntu_linux 20.04
hp envy_4520_f0v63b -
hp deskjet_ink_advantage_3545_a9t83b -
hp envy_4516_k9h52a -
epson xp-620 -
hp deskjet_ink_advantage_5575_g0v48c -
hp envy_5540_g0v53a -
hp envy_4526_k9t05b -
hp envy_5540_f2e72a -
hp envy_5000_z4a74a -
hp hp_officejet_4655_f1j00a -
huawei hg255s -
hp envy_photo_6200_k7g18a -
hp envy_5000_m2u91a -
epson xp-8500 -
hp envy_5540_g0v51a -
hp envy_6055_5se16a -
hp envy_pro_6420_6wd16a -
hp envy_photo_7120_z3m41d -
epson xp-4105 -
hp envy_114_cq812a -
microsoft xbox_one 10.0.19041.2494
hp envy_5000_m2u94b -
hp hp_officejet_4650_e6g87a -
hp hp_deskjet_ink_advantage_4535_f0v64a -
epson xp-630 -
hp envy_120_cz022c -
hp envy_5543_n9u88a -
hp 5030_z4a70a -
hp envy_100_cn517c -
hp hp_envy_4520_f0v69a -
hp deskjet_ink_advantage_4518 -
hp envy_5541_k7g89a -
hp hp_officejet_4656_k9v81b -
epson xp-4100 -
hp envy_120_cz022b -
hp officejet_4652_k9v84b -
hp deskjet_ink_advantage_3456_a9t84c -
canon selphy_cp1200 -
hp envy_6020_7cz37a -
hp deskjet_ink_advantage_4538_f0v66b -
hp envy_photo_6200_y0k13d_ -
hp deskjet_ink_advantage_3548_a9t81b -
hp officejet_4657_v6d29b -
hp envy_4503_e6g71b -
hp envy_photo_7100_z3m37a -
hp envy_5542_k7c88a -
hp envy_5539 -
hp deskjet_ink_advantage_4676_f1h98a -
zyxel amg1202-t10b -
hp hp_deskjet_ink_advantage_4675_f1h97a -
hp envy_7645_e4w44a -
hp hp_officejet_4657_v6d29b -
hp deskjet_ink_advantage_4678_f1h99b -
hp hp_envy_4524_f0v71b -
hp hp_officejet_4650_f1h96a -
hp envy_4520_e6g67a -
hp envy_photo_7164_k7g99a -
epson xp-960 -
hp envy_4527_j6u61b -
hp envy_6052_5se18a -
hp deskjet_ink_advantage_3546_a9t82a -
dlink dvg-n5412sp -
hp envy_photo_7800_k7r96a -
hp hp_deskjet_ink_advantage_4678_f1h99b -
hp envy_5642_b9s64a -
hp envy_7644_e4w46a -
hp 5020_z4a69a -
hp hp_deskjet_ink_advantage_4675_f1h97c -
hp officejet_4650_f1h96b -
hp envy_5546_k7c90a -
hp envy_photo_6230_k7g25b -
hp officejet_4650_e6g87a -
epson xp-340 -
hp hp_envy_4523_j6u60b -
epson xp-8600 -
hp hp_officejet_4655_k9v79a -
hp envy_5530 -
hp envy_photo_7100_k7g99a -
asus rt-n11 -
hp deskjet_ink_advantage_3545_a9t81a -
hp envy_pro_6455_5se45a -
hp hp_envy_4513_k9h51a -
hp envy_photo_7800_y0g52b -
hp envy_110_cq812c -
hp deskjet_ink_advantage_4675_f1h97a -
hp envy_4502_a9t87b -
hp envy_photo_6234_k7s21b -
hp envy_4520_f0v63a -
hp envy_pro_6420_5se45b -
hp envy_6020_6wd35a -
nec wr8165n -
epson xp-440 -
hp deskjet_ink_advantage_4675_f1h97b -
hp envy_photo_6220_k7g21b -
hp envy_pro_6420_5se46a -
hp hp_envy_4520_e6g67b -
hp hp_officejet_4652_f1j02a -
hp envy_100_cn519a -
hp envy_photo_6200_k7s21b -
hp envy_4522_f0v67a -
epson xp-100 -
hp hp_deskjet_ink_advantage_4536_f0v65a -
hp hp_envy_4520_e6g67a -
hp envy_110_cq809a -
hp envy_photo_6200_k7g26b -
hp envy_4504_a9t88b -
hp hp_envy_4524_f0v72b -
hp hp_envy_4526_k9t05b -
hp envy_4523_j6u60b -
hp envy_photo_7800_k7s00a -
hp envy_4524_k9t01a -
ruckussecurity zonedirector_1200 -
hp hp_deskjet_ink_advantage_4676_f1h98a -
hp hp_officejet_4658_v6d30b -
hp envy_photo_6252_k7g22a -
hp hp_envy_4527_j6u61b -
hp hp_envy_4522_f0v67a -
hp envy_4500_a9t80b -
hp envy_100_cn519b -
hp hp_envy_4512_k9h49a -
hp envy_5640_b9s58a -
w1.fi hostapd *
hp envy_6020_5se17a -
epson xp-2101 -
epson m571t -
hp officejet_4654_f1j07b -
epson xp-702 -
hp deskjet_ink_advantage_4515 -
fedoraproject fedora 32
hp envy_photo_7830_y0g50b -
hp hp_envy_4524_k9t01a -
hp envy_photo_7822_y0g43d -
hp deskjet_ink_advantage_4536_f0v65a -
cisco wap131 -
epson xp-2105 -
hp envy_4501_c8d05a -
hp envy_photo_7822_y0g42d -
hp envy_4509_d3p94b -
ui unifi_controller -
epson xp-970 -
epson xp-330 -
epson xp-241 -
hp envy_4504_c8d04a -
hp hp_envy_4520_f0v63b -
hp envy_100_cn517a -
hp envy_5665_f8b06a -
hp hp_envy_4520_f0v63a -
hp envy_5000_m2u85b -
hp envy_4524_f0v72b -
hp deskjet_ink_advantage_3545_a9t81c -
hp envy_4502_a9t85a -
hp envy_5644_b9s65a -
hp hp_officejet_4654_f1j06b -
hp envy_photo_7100_z3m52a -
hp hp_envy_4525_k9t09b -
hp envy_4511_k9h50a -
hp envy_photo_6200_y0k15a -
hp officejet_4655_k9v79a -
hp officejet_4650_f1h96a -
hp envy_100_cn518a -
hp deskjet_ink_advantage_4675_f1h97c -
hp envy_photo_7800_y0g42d -
hp envy_4524_f0v71b -
zyxel vmg8324-b10a -
epson ew-m970a3t -
hp officejet_4652_f1j05b -
hp envy_photo_7100_k7g93a -
hp envy_5536 -
hp envy_photo_6232_k7g26b -
hp envy_4509_d3p94a -
hp officejet_4656_k9v81b -
hp envy_5540_g0v52a -
hp envy_100_cn517b -
hp envy_5000_m2u85a -
hp hp_officejet_4654_f1j07b -
dell b1165nfw -
hp envy_4528_k9t08b -
hp envy_5646_f8b05a -
hp officejet_4655_f1j00a -
hp envy_5534 -
hp envy_5535 -
hp envy_4500_a9t89a -
hp envy_pro_6452_5se47a -
hp envy_4520_f0v69a -
hp envy_photo_6222_y0k14d -
hp deskjet_ink_advantage_4535_f0v64c -
hp hp_deskjet_ink_advantage_4535_f0v64b -
hp envy_photo_7800_k7s10d -
hp officejet_4652_f1j02a -
hp envy_114_cq811b -
hp hp_envy_4516_k9h52a -
hp envy_photo_7100_3xd89a -
hp hp_deskjet_ink_advantage_4535_f0v64c -
debian debian_linux 9.0
hp envy_photo_6220_k7g20d -
tp-link archer_c50 -
hp 5034_z4a74a -
hp envy_4505_a9t86a -
hp envy_5531 -
broadcom adsl -
hp hp_envy_4521_k9t10b -
microsoft windows_10 -
epson xp-320 -
hp hp_envy_4511_k9h50a -
hp envy_5532 -
hp envy_5540_k7c85a -
hp envy_4520_e6g67b -
hp envy_4513_k9h51a -
hp envy_5548_k7g87a -
hp envy_5640_b9s56a -
hp envy_4508_e6g72b -
hp envy_4512_k9h49a -
hp envy_5540_g0v47a -
hp officejet_4654_f1j06b -
hp hp_envy_4528_k9t08b -
cisco wap150 -
hp hp_officejet_4652_k9v84b -
hp envy_114_cq811a -
hp deskjet_ink_advantage_4535_f0v64b -
hp envy_pro_6420_6wd14a -
hp envy_110_cq809c -
hp hp_officejet_4652_f1j05b -
hp envy_5545_g0v50a -
hp 5030_m2u92b -
hp officejet_4655_k9v82b -
huawei hg532e -
epson ep-101 -
hp envy_5000_z4a54a -
hp envy_5544_k7c89a -
hp envy_110_cq809b -
zte zxv10_w300 -
debian debian_linux 10.0
hp 5660_f8b04a -
hp envy_4507_e6g70b -
hp deskjet_ink_advantage_4535_f0v64a -
hp hp_officejet_4650_f1h96b -
hp envy_4525_k9t09b -
netgear wnhde111 -
hp hp_deskjet_ink_advantage_4675_f1h97b -
hp envy_7640 -
hp envy_5000_m2u91a *
hp officejet_4658_v6d30b -
hp envy_6540_b9s59a -
hp hp_officejet_4655_k9v82b -
hp envy_4521_k9t10b -
hp envy_5020_m2u91b -
hp envy_111_cq810a -
hp envy_4500_a9t80a -
hp envy_5544_k7c93a -
hp hp_deskjet_ink_advantage_4538_f0v66b -
hp envy_6020_5se16b -
hp envy_photo_7155_z3m52a -
hp deskjet_ink_advantage_5575_g0v48b -
hp envy_5547_j6u64a -
hp envy_5643_b9s63a -
hp envy_photo_6222_y0k13d -
fedoraproject fedora 31
hp envy_110_cq809d -
hp envy_5664_f8b08a -
cisco wap351 -
CVE-2020-28929 HIGH

Unrestricted access to the log downloader functionality in EPSON EPS TSE Server 8 (21.0.11) allows an unauthenticated attacker to remotely retrieve administrative hashed credentials via the maintenance/troubleshoot.php?download=1 URI.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-306,

Products Affected

Vendor Product Version
epson eps_tse_server_8_firmware 21.0.11
CVE-2020-28930 LOW

A Cross-Site Scripting (XSS) issue in the 'update user' and 'delete user' functionalities in settings/users.php in EPSON EPS TSE Server 8 (21.0.11) allows an authenticated attacker to inject a JavaScript payload in the user management page that is executed by an administrator.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
epson eps_tse_server_8_firmware 21.0.11
CVE-2020-28931 MEDIUM

Lack of an anti-CSRF token in the entire administrative interface in EPSON EPS TSE Server 8 (21.0.11) allows an unauthenticated attacker to force an administrator to execute external POST requests by visiting a malicious website.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
epson eps_tse_server_8_firmware 21.0.11
CVE-2020-5674 MEDIUM

Untrusted search path vulnerability in the installers of multiple SEIKO EPSON products allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-427,

Products Affected

Vendor Product Version
epson net_software_development_kit -
epson photolier -
epson link2 -
epson creativity_suite -
epson easy_settings -
epson print_layout -
epson prolab_print -
epson scanner_driver -
epson easy_photo_print -
epson pm-t990_integrated_installer -
epson color_calibration_utility -
epson multi-print_quicker -
epson webconfig -
epson connect -
epson web_to_page -
epson imaging_workshop -
epson scan_icm_updater -
epson universal_print_driver -
epson status_monitor_3 -
epson e-photo -
epson colorbase -
epson net_print -
epson photoquicker -
epson print -
epson print_image_framer_tool -
epson album_print -
epson net_config_se -
epson status_monitor_2 -
epson colorio_easy_print -
epson remote_printer_driver -
epson ec-01_firmware -
epson photostarter 3.1
epson net_config -
CVE-2020-5681 HIGH

Untrusted search path vulnerability in self-extracting files created by EpsonNet SetupManager versions 2.2.14 and earlier, and Offirio SynergyWare PrintDirector versions 1.6x/1.6y and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-427,

Products Affected

Vendor Product Version
epson epsonnet_setupmanager *
epson offirio_synergyware_printdirector *
CVE-2020-6091 MEDIUM

An exploitable authentication bypass vulnerability exists in the ESPON Web Control functionality of Epson EB-1470Ui MAIN: 98009273ESWWV107 MAIN2: 8X7325WWV303. A specially crafted series of HTTP requests can cause authentication bypass resulting in information disclosure. An attacker can send an HTTP request to trigger this vulnerability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-288,CWE-287,

Products Affected

Vendor Product Version
epson eb-1470ui_firmware -
CVE-2020-9014 LOW

In Epson iProjection v2.30, the driver file (EMP_NSAU.sys) allows local users to cause a denial of service (BSOD) via crafted input to the virtual audio device driver with IOCTL 0x9C402402, 0x9C402406, or 0x9C40240A. \Device\EMPNSAUIO and \DosDevices\EMPNSAU are similarly affected.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
epson iprojection *
CVE-2020-9453 MEDIUM

In Epson iProjection v2.30, the driver file EMP_MPAU.sys allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9C402406 and IOCtl 0x9C40240A. (0x9C402402 has only a NULL pointer dereference.) This affects \Device\EMPMPAUIO and \DosDevices\EMPMPAU.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
epson iprojection *
CVE-2022-36133

The WebConfig functionality of Epson TM-C3500 and TM-C7500 devices with firmware version WAM31500 allows authentication bypass.

Products Affected

Vendor Product Version
epson tm-c7510g_firmware wam31500
epson tm-c7500g_firmware wam31500
epson tm-c7520g_firmware wam31500
epson tm-c3510_firmware wam31500
epson tm-c3520_firmware wam31500
epson tm-c7510_firmware wam31500
epson tm-c7520_firmware wam31500
epson tm-c3500_firmware wam31500
epson tm-c7500_firmware wam31500
CVE-2023-23572

Cross-site scripting vulnerability in SEIKO EPSON printers/network interface Web Config allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script. [Note] Web Config is the software that allows users to check the status and change the settings of SEIKO EPSON printers/network interface via a web browser. According to SEIKO EPSON CORPORATION, it is also called as Remote Manager in some products. Web Config is pre-installed in some printers/network interface provided by SEIKO EPSON CORPORATION. For the details of the affected product names/model numbers, refer to the information provided by the vendor.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 2.8 3.6

Products Affected

Vendor Product Version
epson px-7500n_firmware -
epson px-6550_firmware -
epson px-h6000_firmware -
epson lp-9300_firmware -
epson prifnw2s_firmware -
epson sc-s40650_firmware -
epson sc-p10050_firmware -
epson lp-9600s_firmware -
epson lp-s5500_firmware -
epson lp-s3000r_firmware -
epson sc-t5050_firmware -
epson pa-w11g2_firmware -
epson px-b500_firmware -
epson lp-s3000z_firmware -
epson sc-px3v_firmware -
epson lp-s5000_firmware -
epson lp-s4000_firmware -
epson lp-s310n_firmware -
epson tm-c3500_firmware -
epson sc-s80650l_firmware -
epson prifnw3s_firmware -
epson tm-c3400_firmware -
epson sc-f6200_firmware -
epson prifnw3_firmware -
epson lp-9200ps3_firmware -
epson sc-t7255_firmware -
epson sc-p7050_firmware -
epson lp-s300n_firmware -
epson stylus_pro_gs6000_firmware -
epson sc-f9450h_firmware -
epson sc-s70650_firmware -
epson lp-s4200_firmware -
epson lp-s8100_firmware -
epson pa-w11g_firmware -
epson px-h9000_firmware -
epson prifnw1s_firmware -
epson sc-px5v2_firmware -
epson sc-t5255d_firmware -
epson lp-s6500_firmware -
epson prifnw2ac_firmware -
epson sc-t7250_firmware -
epson lp-8500c_firmware -
epson px-6250s_firmware -
epson lp-s4500_firmware -
epson sc-px7v2_firmware -
epson sc-f2150_firmware -
epson esnsb1_firmware -
epson prifnw6_firmware -
epson sc-p6050_firmware -
epson esnsb2_firmware -
epson sc-t3250_firmware -
epson sc-t3050_firmware -
epson px-7550s_firmware -
epson px-5800_firmware -
epson sc-p8050_firmware -
epson px-5v_firmware -
epson prifnw2sac_firmware -
epson sc-s30650_firmware -
epson lp-8200c_firmware -
epson px-h7000_firmware -
epson lp-s7100_firmware -
epson sc-p9050_firmware -
epson sc-t7255d_firmware -
epson prifnw1_firmware -
epson px-f8000_firmware -
epson lp-9600_firmware -
epson lp-8700ps3_firmware -
epson lp-s7500ps_firmware -
epson prifnw7u_firmware -
epson lp-9800c_firmware -
epson sc-t5250d_firmware -
epson prifnw2_firmware -
epson sc-f6000_firmware -
epson esifnw1_firmware -
epson px-7v_firmware -
epson sc-f7200_firmware -
epson lp-s3500_firmware -
epson lp-s7500_firmware -
epson px-f10000_firmware -
epson lp-s7000_firmware -
epson sc-s60650l_firmware -
epson lp-s9000_firmware -
epson lp-9200c_firmware -
epson sc-t5250_firmware -
epson px-b510_firmware -
epson lp-9200b_firmware -
epson sc-t3255_firmware -
epson lp-s6000_firmware -
epson px-20000_firmware -
epson px-7550_firmware -
epson sc-p5050_firmware -
epson sc-f6350_firmware -
epson px-5002_firmware -
epson sc-t7250d_firmware -
epson px-9500n_firmware -
epson tm-c7500_firmware -
epson prifnw7_firmware -
epson px-f8000m_firmware -
epson sc-s50650_firmware -
epson px-h8000_firmware -
epson sc-t7050_firmware -
epson sc-f2000_firmware -
epson lp-s3000_firmware -
epson sc-f7100_firmware -
epson lp-s3000ps_firmware -
epson sc-s60650_firmware -
epson px-h10000_firmware -
epson sc-s80650_firmware -
epson sc-f9350_firmware -
epson sc-f9200_firmware -
epson lp-s5300_firmware -
epson px-9550_firmware -
epson sc-p20050_firmware -
epson prifnw7s_firmware -
epson sc-t5255_firmware -
epson px-w8000_firmware -
epson lp-s5300r_firmware -
epson lp-9200ps2_firmware -
epson sc-f9450_firmware -
epson px-9550s_firmware -
CVE-2023-27520

Cross-site request forgery (CSRF) vulnerability in SEIKO EPSON printers/network interface Web Config allows a remote unauthenticated attacker to hijack the authentication and perform unintended operations by having a logged-in user view a malicious page. [Note] Web Config is the software that allows users to check the status and change the settings of SEIKO EPSON printers/network interface via a web browser. According to SEIKO EPSON CORPORATION, it is also called as Remote Manager in some products. Web Config is pre-installed in some printers/network interface provided by SEIKO EPSON CORPORATION. For the details of the affected product names/model numbers, refer to the information provided by the vendor.

Products Affected

Vendor Product Version
epson px-7500n_firmware -
epson px-6550_firmware -
epson px-h6000_firmware -
epson lp-9300_firmware -
epson prifnw2s_firmware -
epson sc-s40650_firmware -
epson sc-p10050_firmware -
epson lp-9600s_firmware -
epson lp-s5500_firmware -
epson lp-s3000r_firmware -
epson sc-t5050_firmware -
epson pa-w11g2_firmware -
epson px-b500_firmware -
epson lp-s3000z_firmware -
epson sc-px3v_firmware -
epson lp-s5000_firmware -
epson lp-s4000_firmware -
epson lp-s310n_firmware -
epson tm-c3500_firmware -
epson sc-s80650l_firmware -
epson prifnw3s_firmware -
epson tm-c3400_firmware -
epson sc-f6200_firmware -
epson prifnw3_firmware -
epson lp-9200ps3_firmware -
epson sc-t7255_firmware -
epson sc-p7050_firmware -
epson lp-s300n_firmware -
epson stylus_pro_gs6000_firmware -
epson sc-f9450h_firmware -
epson sc-s70650_firmware -
epson lp-s4200_firmware -
epson lp-s8100_firmware -
epson pa-w11g_firmware -
epson px-h9000_firmware -
epson prifnw1s_firmware -
epson sc-px5v2_firmware -
epson sc-t5255d_firmware -
epson lp-s6500_firmware -
epson prifnw2ac_firmware -
epson sc-t7250_firmware -
epson lp-8500c_firmware -
epson px-6250s_firmware -
epson lp-s4500_firmware -
epson sc-px7v2_firmware -
epson sc-f2150_firmware -
epson esnsb1_firmware -
epson prifnw6_firmware -
epson sc-p6050_firmware -
epson esnsb2_firmware -
epson sc-t3250_firmware -
epson sc-t3050_firmware -
epson px-7550s_firmware -
epson px-5800_firmware -
epson sc-p8050_firmware -
epson px-5v_firmware -
epson prifnw2sac_firmware -
epson sc-s30650_firmware -
epson lp-8200c_firmware -
epson px-h7000_firmware -
epson lp-s7100_firmware -
epson sc-p9050_firmware -
epson sc-t7255d_firmware -
epson prifnw1_firmware -
epson px-f8000_firmware -
epson lp-9600_firmware -
epson lp-8700ps3_firmware -
epson lp-s7500ps_firmware -
epson prifnw7u_firmware -
epson lp-9800c_firmware -
epson sc-t5250d_firmware -
epson prifnw2_firmware -
epson sc-f6000_firmware -
epson esifnw1_firmware -
epson px-7v_firmware -
epson sc-f7200_firmware -
epson lp-s3500_firmware -
epson lp-s7500_firmware -
epson px-f10000_firmware -
epson lp-s7000_firmware -
epson sc-s60650l_firmware -
epson lp-s9000_firmware -
epson lp-9200c_firmware -
epson sc-t5250_firmware -
epson px-b510_firmware -
epson lp-9200b_firmware -
epson sc-t3255_firmware -
epson lp-s6000_firmware -
epson px-20000_firmware -
epson px-7550_firmware -
epson sc-p5050_firmware -
epson sc-f6350_firmware -
epson px-5002_firmware -
epson sc-t7250d_firmware -
epson px-9500n_firmware -
epson tm-c7500_firmware -
epson prifnw7_firmware -
epson px-f8000m_firmware -
epson sc-s50650_firmware -
epson px-h8000_firmware -
epson sc-t7050_firmware -
epson sc-f2000_firmware -
epson lp-s3000_firmware -
epson sc-f7100_firmware -
epson lp-s3000ps_firmware -
epson sc-s60650_firmware -
epson px-h10000_firmware -
epson sc-s80650_firmware -
epson sc-f9350_firmware -
epson sc-f9200_firmware -
epson lp-s5300_firmware -
epson px-9550_firmware -
epson sc-p20050_firmware -
epson prifnw7s_firmware -
epson sc-t5255_firmware -
epson px-w8000_firmware -
epson lp-s5300r_firmware -
epson lp-9200ps2_firmware -
epson sc-f9450_firmware -
epson px-9550s_firmware -
CVE-2023-38556

Improper input validation vulnerability in SEIKO EPSON printer Web Config allows a remote attacker to turned off the printer. [Note] Web Config is the software that allows users to check the status and change the settings of SEIKO EPSON printers via a web browser. Web Config is pre-installed in some printers provided by SEIKO EPSON CORPORATION. For the details of the affected product names/model numbers, refer to the information provided by the vendor.

Products Affected

Vendor Product Version
epson ep-802a_firmware -
epson ep-801a_firmware -
epson ep-901a_firmware -
epson pm-t960_firmware -
epson pa-tcu1_firmware -
epson px-602f_firmware -
epson ep-902a_firmware -
epson px-502a_firmware -
epson px-201_firmware -
epson px-601f_firmware -
epson ep-901f_firmware -
epson pm-t990_firmware -
CVE-2026-23767

ESC/POS, a printer control language designed by Seiko Epson Corporation, lacks mechanisms for user authentication and command authorization, does not provide controls to restrict sources or destinations of network communication, and transmits commands without encryption or integrity protection.

Products Affected

Vendor Product Version
epson tm-m55_firmware -
epson tm-t20iii_firmware -
epson tm-t88vii_firmware -
epson tm-m30ii-h_firmware -
epson tm-h6000v_firmware -
epson ub-r04_firmware -
epson tm-m30ii_firmware -
epson tm-m30ii-s_firmware -
epson tm-p20_firmware -
epson ub-e04_firmware -
epson tm-m30ii-sl_firmware -
epson tm-t88vi_firmware -
epson sb-h50_firmware -
epson tm-p60ii_firmware -
epson tm-m10_firmware -
epson tm-p80ii_firmware -
epson tm-m30_firmware -
epson tm-m30iii_firmware -
epson tm-p80_firmware -
epson tm-l100_firmware -
epson tm-t88vi-ihub_firmware -
epson tm-p20ii_firmware -
epson tm-t20ii_firmware -
epson tm-m30iii-h_firmware -