CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2021-39368
https://notcve.org/view.php?id=CVE-2021-39368
22 Aug 2021 — Canon Oce Print Exec Workgroup 1.3.2 allows XSS via the lang parameter. Canon Oce Print Exec Workgroup versión 1.3.2, permite un ataque de tipo XSS por medio del parámetro lang. • https://github.com/IthacaLabs/Canon/tree/main/OCE_Print_Exec_Workgroup_Version_1_3_2/XSS_HTMLi • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2021-39367
https://notcve.org/view.php?id=CVE-2021-39367
22 Aug 2021 — Canon Oce Print Exec Workgroup 1.3.2 allows Host header injection. Canon Oce Print Exec Workgroup versión 1.3.2, permite una inyección del encabezado Host. • https://github.com/IthacaLabs/Canon/tree/main/OCE_Print_Exec_Workgroup_Version_1_3_2/HHI • CWE-116: Improper Encoding or Escaping of Output •
CVSS: 7.8EPSS: 3%CPEs: 2EXPL: 3CVE-2021-38085 – Canon TR150 Driver 3.71.2.10 Privilege Escalation
https://notcve.org/view.php?id=CVE-2021-38085
11 Aug 2021 — The Canon TR150 print driver through 3.71.2.10 is vulnerable to a privilege escalation issue. During the add printer process, a local attacker can overwrite CNMurGE.dll and, if timed properly, the overwritten DLL will be loaded into a SYSTEM process resulting in escalation of privileges. This occurs because the driver drops a world-writable DLL into a CanonBJ %PROGRAMDATA% location that gets loaded by printisolationhost (a system process). El controlador de impresión Canon TR150 versiones hasta 3.71.2.10, e... • https://packetstorm.news/files/id/163795 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.5EPSS: 0%CPEs: 56EXPL: 0CVE-2020-16849
https://notcve.org/view.php?id=CVE-2020-16849
30 Nov 2020 — An issue was discovered on Canon MF237w 06.07 devices. An "Improper Handling of Length Parameter Inconsistency" issue in the IPv4/ICMPv4 component, when handling a packet sent by an unauthenticated network attacker, may expose Sensitive Information. Se detectó un problema en los dispositivos Canon MF237w versión 06.07. Un problema de "Improper Handling of Length Parameter Inconsistency" en el componente IPv4/ICMPv4, cuando se maneja un paquete enviado por un atacante de red no autenticado, puede exponer inf... • https://blog.scadafence.com/vulnerability-report-cve-2020-16849 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-26508
https://notcve.org/view.php?id=CVE-2020-26508
16 Nov 2020 — The WebTools component on Canon Oce ColorWave 3500 5.1.1.0 devices allows attackers to retrieve stored SMB credentials via the export feature, even though these are intentionally inaccessible in the UI. El componente WebTools de los dispositivos Canon Oce ColorWave 3500 versión 5.1.1.0, permite a atacantes recuperar las credenciales SMB almacenadas por medio de la funcionalidad export, aunque sean intencionadamente inaccesibles en la interfaz de usuario • https://www.syss.de/pentest-blog • CWE-522: Insufficiently Protected Credentials •
CVSS: 7.8EPSS: 3%CPEs: 220EXPL: 3CVE-2020-12695 – hostapd: UPnP SUBSCRIBE misbehavior in WPS AP
https://notcve.org/view.php?id=CVE-2020-12695
08 Jun 2020 — The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue. La especificación UPnP de Open Connectivity Foundation antes del 17-04-2020 no prohíbe la aceptación de una petición de suscripción con una URL de entrega en un segmento de red diferente a la URL de suscripción de evento totalmente calificada, también se co... • https://packetstorm.news/files/id/158051 • CWE-276: Incorrect Default Permissions CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2020-10671 – Oce Colorwave 500 CSRF / XSS / Authentication Bypass
https://notcve.org/view.php?id=CVE-2020-10671
19 Mar 2020 — The Canon Oce Colorwave 500 4.0.0.0 printer's web application is missing any form of CSRF protections. This is a system-wide issue. An attacker could perform administrative actions by targeting a logged-in administrative user. NOTE: this is fixed in the latest version. La aplicación web de la impresora Canon Oce Colorwave 500 versión 4.0.0.0, no presenta ninguna forma de protecciones de CSRF. • http://packetstormsecurity.com/files/156833/Oce-Colorwave-500-CSRF-XSS-Authentication-Bypass.html • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 1CVE-2020-10667 – Oce Colorwave 500 CSRF / XSS / Authentication Bypass
https://notcve.org/view.php?id=CVE-2020-10667
19 Mar 2020 — The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to Stored XSS in /TemplateManager/indexExternalLocation.jsp. The vulnerable parameter is map(template_name). NOTE: this is fixed in the latest version. La aplicación web expuesta por la impresora Canon Oce Colorwave 500 versión 4.0.0.0, vulnerable a un ataque de tipo XSS Almacenado en el archivo /TemplateManager/indexExternalLocation.jsp. El parámetro vulnerable es map(template_name). • http://packetstormsecurity.com/files/156833/Oce-Colorwave-500-CSRF-XSS-Authentication-Bypass.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 1CVE-2020-10668 – Oce Colorwave 500 CSRF / XSS / Authentication Bypass
https://notcve.org/view.php?id=CVE-2020-10668
19 Mar 2020 — The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to Reflected XSS in /home.jsp. The vulnerable parameter is openSI. NOTE: this is fixed in the latest version. La aplicación web expuesta por la impresora Canon Oce Colorwave 500 versión 4.0.0.0, es vulnerable a un ataque de tipo XSS Reflejado en el archivo /home.jsp. El parámetro vulnerable es openSI. • http://packetstormsecurity.com/files/156833/Oce-Colorwave-500-CSRF-XSS-Authentication-Bypass.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 1CVE-2020-10670 – Oce Colorwave 500 CSRF / XSS / Authentication Bypass
https://notcve.org/view.php?id=CVE-2020-10670
19 Mar 2020 — The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to Reflected XSS in the parameter settingId of the settingDialogContent.jsp page. NOTE: this is fixed in the latest version. La aplicación web expuesta por la impresora Canon Oce Colorwave 500 versión 4.0.0.0, es vulnerable a un ataque de tipo XSS Reflejado en el parámetro settingId de la página settingDialogContent.jsp. NOTA: esto es corregido en la última versión. Oce Colorwave 500 printer suffers from authentication ... • http://packetstormsecurity.com/files/156833/Oce-Colorwave-500-CSRF-XSS-Authentication-Bypass.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •