CVE-2023-38556

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

Improper input validation vulnerability in SEIKO EPSON printer Web Config allows a remote attacker to turned off the printer.
[Note] Web Config is the software that allows users to check the status and change the settings of SEIKO EPSON printers via a web browser. Web Config is pre-installed in some printers provided by SEIKO EPSON CORPORATION. For the details of the affected product names/model numbers, refer to the information provided by the vendor.

*Credits: N/A

CVSS Scores

NISTv3.1 7.5

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2023-07-20 CVE Reserved
2023-08-02 CVE Published
2024-09-03 EPSS Updated
2024-10-21 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (2)

URL	Tag	Source
https://jvn.jp/en/jp/JVN61337171	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://www.epson.jp/support/misc_t/230802_oshirase.htm	2023-08-07

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Epson Search vendor "Epson"	Ep-801a Firmware Search vendor "Epson" for product "Ep-801a Firmware"	-	-	Affected	in	Epson Search vendor "Epson"	Ep-801a Search vendor "Epson" for product "Ep-801a"	-	-	Safe
Epson Search vendor "Epson"	Ep-802a Firmware Search vendor "Epson" for product "Ep-802a Firmware"	-	-	Affected	in	Epson Search vendor "Epson"	Ep-802a Search vendor "Epson" for product "Ep-802a"	-	-	Safe
Epson Search vendor "Epson"	Ep-901a Firmware Search vendor "Epson" for product "Ep-901a Firmware"	-	-	Affected	in	Epson Search vendor "Epson"	Ep-901a Search vendor "Epson" for product "Ep-901a"	-	-	Safe
Epson Search vendor "Epson"	Ep-901f Firmware Search vendor "Epson" for product "Ep-901f Firmware"	-	-	Affected	in	Epson Search vendor "Epson"	Ep-901f Search vendor "Epson" for product "Ep-901f"	-	-	Safe
Epson Search vendor "Epson"	Ep-902a Firmware Search vendor "Epson" for product "Ep-902a Firmware"	-	-	Affected	in	Epson Search vendor "Epson"	Ep-902a Search vendor "Epson" for product "Ep-902a"	-	-	Safe
Epson Search vendor "Epson"	Pa-tcu1 Firmware Search vendor "Epson" for product "Pa-tcu1 Firmware"	-	-	Affected	in	Epson Search vendor "Epson"	Pa-tcu1 Search vendor "Epson" for product "Pa-tcu1"	-	-	Safe
Epson Search vendor "Epson"	Pm-t960 Firmware Search vendor "Epson" for product "Pm-t960 Firmware"	-	-	Affected	in	Epson Search vendor "Epson"	Pm-t960 Search vendor "Epson" for product "Pm-t960"	-	-	Safe
Epson Search vendor "Epson"	Pm-t990 Firmware Search vendor "Epson" for product "Pm-t990 Firmware"	-	-	Affected	in	Epson Search vendor "Epson"	Pm-t990 Search vendor "Epson" for product "Pm-t990"	-	-	Safe
Epson Search vendor "Epson"	Px-201 Firmware Search vendor "Epson" for product "Px-201 Firmware"	-	-	Affected	in	Epson Search vendor "Epson"	Px-201 Search vendor "Epson" for product "Px-201"	-	-	Safe
Epson Search vendor "Epson"	Px-502a Firmware Search vendor "Epson" for product "Px-502a Firmware"	-	-	Affected	in	Epson Search vendor "Epson"	Px-502a Search vendor "Epson" for product "Px-502a"	-	-	Safe
Epson Search vendor "Epson"	Px-601f Firmware Search vendor "Epson" for product "Px-601f Firmware"	-	-	Affected	in	Epson Search vendor "Epson"	Px-601f Search vendor "Epson" for product "Px-601f"	-	-	Safe
Epson Search vendor "Epson"	Px-602f Firmware Search vendor "Epson" for product "Px-602f Firmware"	-	-	Affected	in	Epson Search vendor "Epson"	Px-602f Search vendor "Epson" for product "Px-602f"	-	-	Safe