Vulnerabilities > CVE-2024-47005

047910
CVSS 8.1 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
toshibatec
sharp

Summary

Sharp and Toshiba Tec MFPs provide configuration related APIs. They are expected to be called by administrative users only, but insufficiently restricted. A non-administrative user may execute some configuration APIs.

Vulnerable Configurations

Part Description Count
OS
Toshibatec
3
OS
Sharp
317
Hardware
Toshibatec
3
Hardware
Sharp
317