Lucene search
ToshibaCVE-2024-27175HistoryJun 14, 2024 - 4:15 a.m.
CVE-2024-27175
2024-06-1404:15:37
CWE-73
Toshiba
web.nvd.nist.gov
27
cve-2024-27175
remote command program
file reading
local file inclusion
printer vulnerability
CVSS3
4.4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
7
Confidence
Low
EPSS
0
Percentile
15.5%
Remote Command program allows an attacker to read any file using a Local File Inclusion vulnerability. An attacker can read any file on the printer. As for the affected products/models/versions, see the reference URL.
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"Linux"
],
"product": "Toshiba Tec e-Studio multi-function peripheral (MFP)",
"vendor": "Toshiba Tec Corporation",
"versions": [
{
"status": "affected",
"version": "see the reference URL"
}
]
}
]Related
nvd
nvd
CVE-2024-27175
2024-06-14 04:15:37
cvelist
cvelist
CVE-2024-27175 Local File Inclusion
2024-06-14 04:04:32
vulnrichment
vulnrichment
CVE-2024-27175 Local File Inclusion
2024-06-14 04:04:32
openvas
openvas
Toshiba Printers Multiple Vulnerabilities (May 2024)
2024-07-08 00:00:00
packetstorm
packetstorm
Toshiba Multi-Function Printers 40 Vulnerabilities
2024-07-04 00:00:00
CVSS3
4.4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
7
Confidence
Low
EPSS
0
Percentile
15.5%
Related for CVE-2024-27175