CVE-2023-38556

Published: Aug 2, 2023Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Improper input validation vulnerability in SEIKO EPSON printer Web Config allows a remote attacker to turned off the printer. [Note] Web Config is the software that allows users to check the status and change the settings of SEIKO EPSON printers via a web browser. Web Config is pre-installed in some printers provided by SEIKO EPSON CORPORATION. For the details of the affected product names/model numbers, refer to the information provided by the vendor.

Affected (12)

Products: Epson: Ep 801a Firmware, Ep 802a Firmware, Ep 901a Firmware, Ep 901f Firmware, Ep 902a Firmware, Pa Tcu1 Firmware, Pm T960 Firmware, Pm T990 Firmware, Px 201 Firmware, Px 502a Firmware, Px 601f Firmware, Px 602f Firmware

12 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Epson Ep 801a Firmware	All versions

Running on/with	Platform Versions
Epson Ep 801a	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Epson Ep 802a Firmware	All versions

Running on/with	Platform Versions
Epson Ep 802a	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Epson Ep 901a Firmware	All versions

Running on/with	Platform Versions
Epson Ep 901a	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Epson Ep 901f Firmware	All versions

Running on/with	Platform Versions
Epson Ep 901f	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Epson Ep 902a Firmware	All versions

Running on/with	Platform Versions
Epson Ep 902a	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Epson Pa Tcu1 Firmware	All versions

Running on/with	Platform Versions
Epson Pa Tcu1	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Epson Pm T960 Firmware	All versions

Running on/with	Platform Versions
Epson Pm T960	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Epson Pm T990 Firmware	All versions

Running on/with	Platform Versions
Epson Pm T990	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Epson Px 201 Firmware	All versions

Running on/with	Platform Versions
Epson Px 201	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Epson Px 502a Firmware	All versions

Running on/with	Platform Versions
Epson Px 502a	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Epson Px 601f Firmware	All versions

Running on/with	Platform Versions
Epson Px 601f	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Epson Px 602f Firmware	All versions

Running on/with	Platform Versions
Epson Px 602f	All versions

References (4)

https://jvn.jp/en/jp/JVN61337171/

Source: vultures@jpcert.or.jp

Third Party Advisory

https://www.epson.jp/support/misc_t/230802_oshirase.htm

Source: vultures@jpcert.or.jp

Vendor Advisory

https://jvn.jp/en/jp/JVN61337171/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.epson.jp/support/misc_t/230802_oshirase.htm

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.