On the EPSON WF-2750 printer with firmware JP02I2, the Web interface AirPrint Setup page is vulnerable to HTML Injection that can redirect users to malicious sites.
oryginał ENCVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NEpson Wf 2750
HWEpsonwszystkie wersjeEpson Wf 2750 Firmware
OSEpsonjp02l2
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
XSS
CWE
Powiązane podatności
CVE-2018-14900HIGH7.5ten sam produkt
On EPSON WF-2750 printers with firmware JP02I2, there is no filtering of print jobs. Remote attackers can send...
CVE-2018-14903HIGH7.5ten sam produkt
EPSON WF-2750 printers with firmware JP02I2 do not properly validate files before running updates, which allow...
CVE-2026-23767CRITICAL9.8PL ✓ten sam vendor
Brak uwierzytelniania i szyfrowania w protokole ESC/POS urządzeń Epson
CVE-2022-36133CRITICAL9.1ten sam vendor
The WebConfig functionality of Epson TM-C3500 and TM-C7500 devices with firmware version WAM31500 allows authe...
CVE-2020-28929CRITICAL9.8ten sam vendor
Unrestricted access to the log downloader functionality in EPSON EPS TSE Server 8 (21.0.11) allows an unauthen...