CVE-2024-47295

CVSS 8.1 HIGHEPSS 0.8%CWE-1188

Insecure initial password configuration issue in SEIKO EPSON Web Config allows a remote unauthenticated attacker to set an arbitrary password and operate the device with an administrative privilege. As for the details of the affected versions, see the information provided by the vendor under [References].

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

SEIKO EPSON CORPORATION · Web Config

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://epson.com/Support/wa00958 https://jvn.jp/en/vu/JVNVU95133448/https://www.epson.jp/support/misc_t/240930_03_oshirase.htm