CVE-2018-14902

Published: Aug 30, 2018Modified: Nov 21, 2024

7.5

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

The ContentProvider in the EPSON iPrint application 6.6.3 for Android does not properly restrict data access. This allows an attacker's application to read scanned documents.

Affected (1)

Products: Epson: Iprint

Epson

1 product

Iprint

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Epson Iprint	Version 6.6.3

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (2)

https://www.vdalabs.com/2018/08/26/epson-printer-vulnerabilities/

Source: cve@mitre.org

ExploitThird Party Advisory

https://www.vdalabs.com/2018/08/26/epson-printer-vulnerabilities/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.