Vulnerabilities > CVE-2023-38556 - Unspecified vulnerability in Epson products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

epson

NVD

Published: 2023-08-02

Updated: 2023-08-07

Summary

Improper input validation vulnerability in SEIKO EPSON printer Web Config allows a remote attacker to turned off the printer. [Note] Web Config is the software that allows users to check the status and change the settings of SEIKO EPSON printers via a web browser. Web Config is pre-installed in some printers provided by SEIKO EPSON CORPORATION. For the details of the affected product names/model numbers, refer to the information provided by the vendor.

Vulnerable Configurations

Part	Description	Count
OS	Epson Epson EP 801A Firmware - Epson EP 802A Firmware - Epson EP 901A Firmware - Epson EP 901F Firmware - Epson EP 902A Firmware - Epson PA Tcu1 Firmware - Epson PM T960 Firmware - Epson PM T990 Firmware - Epson PX 201 Firmware - Epson PX 502A Firmware - Epson PX 601F Firmware - Epson PX 602F Firmware -	12
Hardware	Epson Epson EP 801A - Epson EP 802A - Epson EP 901A - Epson EP 901F - Epson EP 902A - Epson PA Tcu1 - Epson PM T960 - Epson PM T990 - Epson PX 201 - Epson PX 502A - Epson PX 601F - Epson PX 602F -	12

Summary

Vulnerable Configurations

References