CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
76.3%
The Remote UI in Canon imageRUNNER includes usernames and passwords when exporting an address book, which allows context-dependent attackers to obtain sensitive information.
Vendor | Product | Version | CPE |
---|---|---|---|
canon | imagerunner_2620 | * | cpe:2.3:a:canon:imagerunner_2620:*:*:*:*:*:*:*:* |
canon | imagerunner_5020 | * | cpe:2.3:a:canon:imagerunner_5020:*:*:*:*:*:*:*:* |
canon | imagerunner_6870 | * | cpe:2.3:a:canon:imagerunner_6870:*:*:*:*:*:*:*:* |
canon | imagerunner_8500 | * | cpe:2.3:a:canon:imagerunner_8500:*:*:*:*:*:*:*:* |
canon | imagerunner_9070 | * | cpe:2.3:a:canon:imagerunner_9070:*:*:*:*:*:*:*:* |
canon | imagerunner_c3220 | * | cpe:2.3:a:canon:imagerunner_c3220:*:*:*:*:*:*:*:* |
canon | imagerunner_c6800 | * | cpe:2.3:a:canon:imagerunner_c6800:*:*:*:*:*:*:*:* |