RSS   Vulnerabilities for 'Lbp6030w firmware'   RSS

2018-06-07
 
CVE-2018-12049

CWE-287
 

 
** DISPUTED ** A remote attacker can bypass the System Manager Mode on the Canon LBP6030w web interface without a PIN for /checkLogin.cgi via vectors involving /portal_top.html to get full access to the device. NOTE: the vendor reportedly responded that this issue occurs when a customer keeps the default settings without using the countermeasures and best practices shown in the documentation.

 

 >>> Vendor: Canon 34 Products
Imagerunner 5000i
Imagerunner c3200
Network camera server vb101
Imagerunner 2620
Imagerunner 5020
Imagerunner 6870
Imagerunner 8500
Imagerunner 9070
Imagerunner c3220
Imagerunner c6800
Network camera server vb100
Network camera server vb150
I-sensys
Imagepress
Imagerunner
Mg3100 printer
Mg5300 printer
Mg6100 printer
Mp340 printer
Mp495 printer
Mx870 printer
Mx890 printer
Mx920 printer
Mx922 printer
Pixma mg7500 series inkjet printer
Lbp3370 firmware
Lbp3460 firmware
Lbp6650 firmware
Lbp7750c firmware
Efi printme
Mf210 firmware
Mf220 firmware
Lbp6030w firmware
Lbp7110cw firmware


Copyright 2019, cxsecurity.com

 

Back to Top