CVSS: 7.5EPSS: 0%CPEs: 56EXPL: 0CVE-2020-16849
https://notcve.org/view.php?id=CVE-2020-16849
30 Nov 2020 — An issue was discovered on Canon MF237w 06.07 devices. An "Improper Handling of Length Parameter Inconsistency" issue in the IPv4/ICMPv4 component, when handling a packet sent by an unauthenticated network attacker, may expose Sensitive Information. Se detectó un problema en los dispositivos Canon MF237w versión 06.07. Un problema de "Improper Handling of Length Parameter Inconsistency" en el componente IPv4/ICMPv4, cuando se maneja un paquete enviado por un atacante de red no autenticado, puede exponer inf... • https://blog.scadafence.com/vulnerability-report-cve-2020-16849 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-26508
https://notcve.org/view.php?id=CVE-2020-26508
16 Nov 2020 — The WebTools component on Canon Oce ColorWave 3500 5.1.1.0 devices allows attackers to retrieve stored SMB credentials via the export feature, even though these are intentionally inaccessible in the UI. El componente WebTools de los dispositivos Canon Oce ColorWave 3500 versión 5.1.1.0, permite a atacantes recuperar las credenciales SMB almacenadas por medio de la funcionalidad export, aunque sean intencionadamente inaccesibles en la interfaz de usuario • https://www.syss.de/pentest-blog • CWE-522: Insufficiently Protected Credentials •
CVSS: 7.8EPSS: 4%CPEs: 220EXPL: 3CVE-2020-12695 – hostapd: UPnP SUBSCRIBE misbehavior in WPS AP
https://notcve.org/view.php?id=CVE-2020-12695
08 Jun 2020 — The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue. La especificación UPnP de Open Connectivity Foundation antes del 17-04-2020 no prohíbe la aceptación de una petición de suscripción con una URL de entrega en un segmento de red diferente a la URL de suscripción de evento totalmente calificada, también se co... • https://packetstorm.news/files/id/158051 • CWE-276: Incorrect Default Permissions CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 1CVE-2020-10667 – Oce Colorwave 500 CSRF / XSS / Authentication Bypass
https://notcve.org/view.php?id=CVE-2020-10667
19 Mar 2020 — The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to Stored XSS in /TemplateManager/indexExternalLocation.jsp. The vulnerable parameter is map(template_name). NOTE: this is fixed in the latest version. La aplicación web expuesta por la impresora Canon Oce Colorwave 500 versión 4.0.0.0, vulnerable a un ataque de tipo XSS Almacenado en el archivo /TemplateManager/indexExternalLocation.jsp. El parámetro vulnerable es map(template_name). • http://packetstormsecurity.com/files/156833/Oce-Colorwave-500-CSRF-XSS-Authentication-Bypass.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 1CVE-2020-10668 – Oce Colorwave 500 CSRF / XSS / Authentication Bypass
https://notcve.org/view.php?id=CVE-2020-10668
19 Mar 2020 — The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to Reflected XSS in /home.jsp. The vulnerable parameter is openSI. NOTE: this is fixed in the latest version. La aplicación web expuesta por la impresora Canon Oce Colorwave 500 versión 4.0.0.0, es vulnerable a un ataque de tipo XSS Reflejado en el archivo /home.jsp. El parámetro vulnerable es openSI. • http://packetstormsecurity.com/files/156833/Oce-Colorwave-500-CSRF-XSS-Authentication-Bypass.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 3%CPEs: 2EXPL: 2CVE-2020-10669 – Oce Colorwave 500 CSRF / XSS / Authentication Bypass
https://notcve.org/view.php?id=CVE-2020-10669
19 Mar 2020 — The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to authentication bypass on the page /home.jsp. An unauthenticated attacker able to connect to the device's web interface can get a copy of the documents uploaded by any users. NOTE: this is fixed in the latest version. La aplicación web expuesta por la impresora Canon Oce Colorwave 500 versión 4.0.0.0, es vulnerable a una omisión de autenticación en la página /home.jsp. Un atacante no autenticado capaz de conectarse a ... • http://packetstormsecurity.com/files/156833/Oce-Colorwave-500-CSRF-XSS-Authentication-Bypass.html • CWE-287: Improper Authentication •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 1CVE-2020-10670 – Oce Colorwave 500 CSRF / XSS / Authentication Bypass
https://notcve.org/view.php?id=CVE-2020-10670
19 Mar 2020 — The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to Reflected XSS in the parameter settingId of the settingDialogContent.jsp page. NOTE: this is fixed in the latest version. La aplicación web expuesta por la impresora Canon Oce Colorwave 500 versión 4.0.0.0, es vulnerable a un ataque de tipo XSS Reflejado en el parámetro settingId de la página settingDialogContent.jsp. NOTA: esto es corregido en la última versión. Oce Colorwave 500 printer suffers from authentication ... • http://packetstormsecurity.com/files/156833/Oce-Colorwave-500-CSRF-XSS-Authentication-Bypass.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2020-10671 – Oce Colorwave 500 CSRF / XSS / Authentication Bypass
https://notcve.org/view.php?id=CVE-2020-10671
19 Mar 2020 — The Canon Oce Colorwave 500 4.0.0.0 printer's web application is missing any form of CSRF protections. This is a system-wide issue. An attacker could perform administrative actions by targeting a logged-in administrative user. NOTE: this is fixed in the latest version. La aplicación web de la impresora Canon Oce Colorwave 500 versión 4.0.0.0, no presenta ninguna forma de protecciones de CSRF. • http://packetstormsecurity.com/files/156833/Oce-Colorwave-500-CSRF-XSS-Authentication-Bypass.html • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 5.5EPSS: 4%CPEs: 1EXPL: 4CVE-2019-14339 – Canon PRINT 2.5.5 - Information Disclosure
https://notcve.org/view.php?id=CVE-2019-14339
30 Aug 2019 — The ContentProvider in the Canon PRINT jp.co.canon.bsd.ad.pixmaprint 2.5.5 application for Android does not properly restrict canon.ij.printer.capability.data data access. This allows an attacker's malicious application to obtain sensitive information including factory passwords for the administrator web interface and WPA2-PSK key. ContentProvider en la aplicación Canon PRINT jp.co.canon.bsd.ad.pixmaprint versión 2.5.5 para Android no restringe correctamente el acceso a los datos de canon.ij.printer.capabil... • https://packetstorm.news/files/id/154266 •
CVSS: 8.8EPSS: 0%CPEs: 134EXPL: 1CVE-2019-5994
https://notcve.org/view.php?id=CVE-2019-5994
06 Aug 2019 — Buffer overflow in PTP (Picture Transfer Protocol) of EOS series digital cameras (EOS-1D X firmware version 2.1.0 and earlier, EOS-1D X MKII firmware version 1.1.6 and earlier, EOS-1D C firmware version 1.4.1 and earlier, EOS 5D MARK III firmware version 1.3.5 and earlier, EOS 5D MARK IV firmware version 1.2.0 and earlier, EOS 5DS firmware version 1.1.2 and earlier, EOS 5DS R firmware version 1.1.2 and earlier, EOS 6D firmware version 1.1.8 and earlier, EOS 6D MARK II firmware version 1.0.4 and earlier, EOS... • http://jvn.jp/en/vu/JVNVU97511331/index.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •