cbcvebase.

Kyoceramita Scanner File Utility vulnerabilities

5 known vulnerabilities affecting kyoceramita/scanner_file_utility.

Total CVEs
5
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2008-7110P3HIGHCVSS 7.8PoCv3.3.0.12009-08-28
CVE-2008-7110 [HIGH] CWE-22 CVE-2008-7110: Directory traversal vulnerability in the Scanner File Utility (aka listener) in Kyocera Mita (KM) 3. Directory traversal vulnerability in the Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to upload files to arbitrary locations via a .. (dot dot) in a request.
nvd
CVE-2008-7109P3CRITICALCVSS 9.8v3.3.0.12009-08-28
CVE-2008-7109 [CRITICAL] CWE-863 CVE-2008-7109: The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to bypa The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to bypass authorization and upload arbitrary files to the client system via a modified program that does not prompt the user for a password.
nvd
CVE-2008-7111P3CRITICALCVSS 9.3v3.3.0.12009-08-28
CVE-2008-7111 [CRITICAL] CVE-2008-7111: The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 does not restrict the filenames The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 does not restrict the filenames or extensions of uploaded files, which makes it easier for remote attackers to execute arbitrary code or overwrite files by leveraging CVE-2008-7110 and CVE-2008-7109.
nvd
CVE-2008-7113P4MEDIUMCVSS 6.4v3.3.0.12009-08-28
CVE-2008-7113 [MEDIUM] CWE-310 CVE-2008-7113: The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 uses a small space of predictab The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 uses a small space of predictable user identification numbers for access control, which allows remote attackers to upload documents via a brute force attack.
nvd
CVE-2008-7112P4MEDIUMCVSS 5.0v3.3.0.12009-08-28
CVE-2008-7112 [MEDIUM] CWE-20 CVE-2008-7112: The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to caus The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to cause a denial of service (hang or crash) via invalid field length values in a malformed (1) document or (2) request.
nvd
Kyoceramita Scanner File Utility vulnerabilities | cvebase