Vulnerabilities > CVE-2022-40306 - Unspecified vulnerability in Ecisolutions Printanista Managed Print Service 20220627
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
The login form /Login in ECi Printanista Hub (formerly FMAudit Printscout) before 5.5.2 (July 2023) performs expensive RSA key-generation operations, which allows attackers to cause a denial of service (DoS) by requesting that form repeatedly.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
References
- https://releasenotes.printanista.net/PrintanistaHub
- https://www.ecisolutions.com/products/printanista-hub/
- https://www.ecisolutions.com/products/printanista-hub/
- https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2022-042.txt
- https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2022-042.txt