Vulnerability Description
Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow a denial of service (service outage) via /wlmdeu%2f%2e%2e%2f%2e%2e followed by a directory reference such as %2fetc%00index.htm to try to read the /etc directory.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Kyocera | D-Copia253Mf Plus Firmware | <= 2vg_s000.002.561 |
| Kyocera | D-Copia253Mf Plus | - |
Related Weaknesses (CWE)
References
- https://sec-consult.com/vulnerability-lab/Third Party Advisory
- https://seclists.org/fulldisclosure/2023/Jul/15ExploitMailing ListThird Party Advisory
- https://sec-consult.com/vulnerability-lab/Third Party Advisory
- https://seclists.org/fulldisclosure/2023/Jul/15ExploitMailing ListThird Party Advisory
FAQ
What is CVE-2023-34260?
CVE-2023-34260 is a vulnerability with a CVSS score of 7.5 (HIGH). Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow a denial of service (service outage) via /wlmdeu%2f%2e%2e%2f%2e%2e followed by a directory reference such as %2fetc%00index.htm to try t...
How severe is CVE-2023-34260?
CVE-2023-34260 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-34260?
Check the references section above for vendor advisories and patch information. Affected products include: Kyocera D-Copia253Mf Plus Firmware, Kyocera D-Copia253Mf Plus.