Skip to main content

Mx M6051 Firmware

10 CVEs product

Monthly

CVE-2024-48870 MEDIUM This Month

Sharp and Toshiba Tec MFPs improperly validate input data in URI data registration, resulting in a stored cross-site scripting vulnerability. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Bp 30C25 Firmware Bp 30C25T Firmware Bp 30C25Y Firmware Bp 30C25Z Firmware Bp 30M28 Firmware +316
NVD
CVSS 3.1
4.8
EPSS
0.3%
CVE-2024-47801 MEDIUM This Month

Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, resulting in a reflected cross-site scripting vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS E Studio1058 Firmware E Studio1208 Firmware E Studio908 Firmware Bp 90C70 Firmware +316
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-47549 MEDIUM This Month

Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, which may allow contamination of unintended data to HTTP response headers. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure E Studio1058 Firmware E Studio1208 Firmware E Studio908 Firmware Bp 90C70 Firmware +316
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-47406 CRITICAL Act Now

Sharp and Toshiba Tec MFPs improperly process HTTP authentication requests, resulting in an authentication bypass vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass E Studio1058 Firmware E Studio1208 Firmware E Studio908 Firmware Bp 90C70 Firmware +316
NVD
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-47005 HIGH This Week

Sharp and Toshiba Tec MFPs provide configuration related APIs. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure E Studio1058 Firmware E Studio1208 Firmware E Studio908 Firmware Bp 90C70 Firmware +316
NVD
CVSS 3.1
8.1
EPSS
0.5%
CVE-2024-45842 MEDIUM This Month

Sharp and Toshiba Tec MFPs improperly process URI data in HTTP PUT requests resulting in a path Traversal vulnerability. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal E Studio1058 Firmware E Studio1208 Firmware E Studio908 Firmware Bp 90C70 Firmware +316
NVD
CVSS 3.1
5.3
EPSS
0.5%
CVE-2024-45829 HIGH This Week

Sharp and Toshiba Tec MFPs provide the web page to download data, where query parameters in HTTP requests are improperly processed and resulting in an Out-of-bounds Read vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure E Studio1058 Firmware E Studio1208 Firmware E Studio908 Firmware +317
NVD
CVSS 3.1
7.5
EPSS
0.7%
CVE-2024-43424 HIGH This Week

Sharp and Toshiba Tec MFPs improperly process HTTP request headers, resulting in an Out-of-bounds Read vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure E Studio1058 Firmware E Studio1208 Firmware E Studio908 Firmware +317
NVD
CVSS 3.1
7.5
EPSS
0.7%
CVE-2024-42420 HIGH This Week

Sharp and Toshiba Tec MFPs contain multiple Out-of-bounds Read vulnerabilities, due to improper processing of keyword search input and improper processing of SOAP messages. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure E Studio1058 Firmware E Studio1208 Firmware E Studio908 Firmware +317
NVD
CVSS 3.1
7.5
EPSS
0.7%
CVE-2022-45796 HIGH This Week

Command injection vulnerability in nw_interface.html in SHARP multifunction printers (MFPs)'s Digital Full-color Multifunctional System 202 or earlier, 120 or earlier, 600 or earlier, 121 or earlier,. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Bp 30C25 Firmware Bp 30C25T Firmware Bp 30C25Y Firmware Bp 30C25Z Firmware +154
NVD
CVSS 3.1
7.2
EPSS
3.2%
EPSS 0% CVSS 4.8
MEDIUM This Month

Sharp and Toshiba Tec MFPs improperly validate input data in URI data registration, resulting in a stored cross-site scripting vulnerability. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Bp 30C25 Firmware Bp 30C25T Firmware Bp 30C25Y Firmware +318
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, resulting in a reflected cross-site scripting vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS E Studio1058 Firmware E Studio1208 Firmware +318
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, which may allow contamination of unintended data to HTTP response headers. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure E Studio1058 Firmware E Studio1208 Firmware +318
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Sharp and Toshiba Tec MFPs improperly process HTTP authentication requests, resulting in an authentication bypass vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass E Studio1058 Firmware E Studio1208 Firmware +318
NVD
EPSS 0% CVSS 8.1
HIGH This Week

Sharp and Toshiba Tec MFPs provide configuration related APIs. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure E Studio1058 Firmware E Studio1208 Firmware +318
NVD
EPSS 1% CVSS 5.3
MEDIUM This Month

Sharp and Toshiba Tec MFPs improperly process URI data in HTTP PUT requests resulting in a path Traversal vulnerability. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal E Studio1058 Firmware E Studio1208 Firmware +318
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Sharp and Toshiba Tec MFPs provide the web page to download data, where query parameters in HTTP requests are improperly processed and resulting in an Out-of-bounds Read vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure E Studio1058 Firmware +319
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Sharp and Toshiba Tec MFPs improperly process HTTP request headers, resulting in an Out-of-bounds Read vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure E Studio1058 Firmware +319
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Sharp and Toshiba Tec MFPs contain multiple Out-of-bounds Read vulnerabilities, due to improper processing of keyword search input and improper processing of SOAP messages. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure E Studio1058 Firmware +319
NVD
EPSS 3% CVSS 7.2
HIGH This Week

Command injection vulnerability in nw_interface.html in SHARP multifunction printers (MFPs)'s Digital Full-color Multifunctional System 202 or earlier, 120 or earlier, 600 or earlier, 121 or earlier,. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Bp 30C25 Firmware Bp 30C25T Firmware +156
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy