Kyocera D-Copia253Mf Plus Firmware vulnerabilities
3 known vulnerabilities affecting kyocera/d-copia253mf_plus_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2023-34259P3MEDIUMCVSS 4.9PoC≤ 2vg_s000.002.5612023-11-03
CVE-2023-34259 [MEDIUM] CVE-2023-34259: Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow /wlmdeu%2f%2e%2e%2f%2e%2e directory
Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow /wlmdeu%2f%2e%2e%2f%2e%2e directory traversal to read arbitrary files on the filesystem, even files that require root privileges. NOTE: this issue exists because of an incomplete fix for CVE-2020-23575.
nvd
CVE-2023-34260P3HIGHCVSS 7.5≤ 2vg_s000.002.5612023-11-03
CVE-2023-34260 [HIGH] CWE-22 CVE-2023-34260: Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow a denial of service (service outage)
Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow a denial of service (service outage) via /wlmdeu%2f%2e%2e%2f%2e%2e followed by a directory reference such as %2fetc%00index.htm to try to read the /etc directory.
nvd
CVE-2023-34261P4MEDIUMCVSS 5.3≤ 2vg_s000.002.5612023-11-03
CVE-2023-34261 [MEDIUM] CWE-200 CVE-2023-34261: Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow identification of valid user account
Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow identification of valid user accounts via username enumeration because they lead to a "nicht einloggen" error rather than a falsch error.
nvd