Vulnerability Description
The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to authentication bypass on the page /home.jsp. An unauthenticated attacker able to connect to the device's web interface can get a copy of the documents uploaded by any users. NOTE: this is fixed in the latest version.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Canon | Oce Colorwave 500 Firmware | 4.0.0.0 |
| Canon | Oce Colorwave 500 | - |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/156833/Oce-Colorwave-500-CSRF-XSS-AuthenticExploitThird Party AdvisoryVDB Entry
- http://seclists.org/fulldisclosure/2020/Mar/24ExploitThird Party Advisory
- https://www.redtimmy.com/red-teaming/hacking-the-oce-colorwave-printer-when-a-quThird Party Advisory
- http://packetstormsecurity.com/files/156833/Oce-Colorwave-500-CSRF-XSS-AuthenticExploitThird Party AdvisoryVDB Entry
- http://seclists.org/fulldisclosure/2020/Mar/24ExploitThird Party Advisory
- https://www.redtimmy.com/red-teaming/hacking-the-oce-colorwave-printer-when-a-quThird Party Advisory
FAQ
What is CVE-2020-10669?
CVE-2020-10669 is a vulnerability with a CVSS score of 7.5 (HIGH). The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to authentication bypass on the page /home.jsp. An unauthenticated attacker able to connect to the device's web...
How severe is CVE-2020-10669?
CVE-2020-10669 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-10669?
Check the references section above for vendor advisories and patch information. Affected products include: Canon Oce Colorwave 500 Firmware, Canon Oce Colorwave 500.