ESC/POS, a printer control language designed by Seiko Epson Corporation, lacks mechanisms for user authentication and command authorization, does not provide controls to restrict sources or destinations of network communication, and transmits commands without encryption or integrity protection.
The ESC/POS protocol does not require any authentication before accepting and executing control commands. The lack of authorization mechanisms means that any entity able to establish a network connection to the device can send any commands. Data transmission occurs without encryption and without data integrity verification, which additionally enables eavesdropping and command modification. The protocol also does not provide any controls limiting the sources or destinations of network communication.
An unauthenticated remote attacker can gain full control over the device — read, modify or block its operation, and potentially compromise the confidentiality, integrity and availability of processed data.
Patches available from the manufacturer should be applied according to references. Additionally, the manufacturer provides an IP Filtering Guide that should be implemented to restrict network access to devices to trusted hosts only. Devices should not be directly accessible from public networks — network segmentation and firewall rules should be applied.
Epson devices: UB-R04, UB-E04 (firmware), UB-E04, SB-H50 (firmware), SB-H50 — specific versions indicated in manufacturer references
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HEpson Sb H50
HWEpsonwszystkie wersjeEpson Sb H50 Firmware
OSEpsonwszystkie wersjeEpson Tm H6000v
HWEpsonwszystkie wersjeEpson Tm H6000v Firmware
OSEpsonwszystkie wersjeEpson Tm L100
HWEpsonwszystkie wersjeEpson Tm L100 Firmware
OSEpsonwszystkie wersjeEpson Tm M10
HWEpsonwszystkie wersjeEpson Tm M10 Firmware
OSEpsonwszystkie wersjeEpson Tm M30
HWEpsonwszystkie wersjeEpson Tm M30 Firmware
OSEpsonwszystkie wersjeEpson Tm M30ii
HWEpsonwszystkie wersjeEpson Tm M30ii Firmware
OSEpsonwszystkie wersjeEpson Tm M30ii H
HWEpsonwszystkie wersjeEpson Tm M30ii H Firmware
OSEpsonwszystkie wersjeEpson Tm M30iii
HWEpsonwszystkie wersjeEpson Tm M30iii Firmware
OSEpsonwszystkie wersjeEpson Tm M30iii H
HWEpsonwszystkie wersjeEpson Tm M30iii H Firmware
OSEpsonwszystkie wersjeEpson Tm M30ii S
HWEpsonwszystkie wersjeEpson Tm M30ii S Firmware
OSEpsonwszystkie wersjeEpson Tm M30ii Sl
HWEpsonwszystkie wersjeEpson Tm M30ii Sl Firmware
OSEpsonwszystkie wersjeEpson Tm M55
HWEpsonwszystkie wersjeEpson Tm M55 Firmware
OSEpsonwszystkie wersjeEpson Tm P20
HWEpsonwszystkie wersjeEpson Tm P20 Firmware
OSEpsonwszystkie wersjeEpson Tm P20ii
HWEpsonwszystkie wersjeEpson Tm P20ii Firmware
OSEpsonwszystkie wersjeEpson Tm P60ii
HWEpsonwszystkie wersjeEpson Tm P60ii Firmware
OSEpsonwszystkie wersje
Related vulnerabilities
The WebConfig functionality of Epson TM-C3500 and TM-C7500 devices with firmware version WAM31500 allows authe...
Unrestricted access to the log downloader functionality in EPSON EPS TSE Server 8 (21.0.11) allows an unauthen...
An exploitable authentication bypass vulnerability exists in the ESPON Web Control functionality of Epson EB-1...
The web service on Epson WorkForce WF-2861 10.48 LQ22I3(Recovery-mode), WF-2861 10.51.LQ20I6, and WF-2861 10.5...
The Epson "EasyMP" software is designed to remotely stream a users computer to supporting projectors.These dev...