CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-34012
https://notcve.org/view.php?id=CVE-2024-34012
Local privilege escalation due to insecure folder permissions. • https://security-advisory.acronis.com/advisories/SEC-5758 • CWE-276: Incorrect Default Permissions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-27165 – Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2024-27165
Toshiba printers contain a suidperl binary and it has a Local Privilege Escalation vulnerability. A local attacker can get root privileges. ... Un atacante local puede obtener privilegios de root. • http://seclists.org/fulldisclosure/2024/Jul/1 https://jvn.jp/en/vu/JVNVU97136265/index.html https://www.toshibatec.com/information/20240531_01.html https://www.toshibatec.com/information/pdf/information20240531_01.pdf • CWE-272: Least Privilege Violation •
CVSS: 7.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-27155 – Local Privilege Escalation and Remote Code Execution using insecure permissions
https://notcve.org/view.php?id=CVE-2024-27155
The Toshiba printers are vulnerable to a Local Privilege Escalation vulnerability. ... The programs can be replaced by malicious programs by any local or remote attacker. ... Las impresoras Toshiba son afectadas por una vulnerabilidad de escalada de privilegios local. ... Los programas pueden ser reemplazados por programas maliciosos por cualquier atacante local o remoto. • http://seclists.org/fulldisclosure/2024/Jul/1 https://jvn.jp/en/vu/JVNVU97136265/index.html https://www.toshibatec.com/information/20240531_01.html https://www.toshibatec.com/information/pdf/information20240531_01.pdf • CWE-276: Incorrect Default Permissions •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-27154 – Passwords are stored in clear-text logs.
https://notcve.org/view.php?id=CVE-2024-27154
En cuanto a los productos/modelos/versiones afectados, consulte la URL de referencia. 103 models of Toshiba Multi-Function Printers (MFP) are vulnerable to 40 different vulnerabilities including remote code execution, local privilege escalation, xml injection, and more. • http://seclists.org/fulldisclosure/2024/Jul/1 https://jvn.jp/en/vu/JVNVU97136265/index.html https://www.toshibatec.com/information/20240531_01.html https://www.toshibatec.com/information/pdf/information20240531_01.pdf • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 7.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-27153 – Local Privilege Escalation and Remote Code Execution
https://notcve.org/view.php?id=CVE-2024-27153
The Toshiba printers are vulnerable to a Local Privilege Escalation vulnerability. ... Las impresoras Toshiba son afectadas por una vulnerabilidad de escalada de privilegios local. ... En cuanto a los productos/modelos/versiones afectados, consulte la URL de referencia. 103 models of Toshiba Multi-Function Printers (MFP) are vulnerable to 40 different vulnerabilities including remote code execution, local privilege escalation, xml injection, and more. • http://seclists.org/fulldisclosure/2024/Jul/1 https://jvn.jp/en/vu/JVNVU97136265/index.html https://www.toshibatec.com/information/20240531_01.html https://www.toshibatec.com/information/pdf/information20240531_01.pdf • CWE-276: Incorrect Default Permissions •