Skip to main content

Printeron

3 CVEs product

Monthly

CVE-2018-19936 MEDIUM POC This Month

PrinterOn Enterprise 4.1.4 allows Arbitrary File Deletion. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Printeron
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
1.1%
CVE-2018-10327 HIGH POC This Week

PrinterOn Enterprise 4.1.3 stores the Active Directory bind credentials using base64 encoding, which allows local users to obtain credentials for a domain user by reading the cps_config.xml file. Rated high severity (CVSS 7.0). Public exploit code available and no vendor patch available.

Information Disclosure Printeron
NVD GitHub
CVSS 3.0
7.0
EPSS
0.3%
CVE-2018-10326 MEDIUM POC This Month

PrinterOn Enterprise 4.1.3 suffers from multiple authenticated stored XSS vulnerabilities via the (1) department field in the printer configuration, (2) description field in the print server. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Printeron
NVD GitHub
CVSS 3.0
5.4
EPSS
0.6%
EPSS 1% CVSS 6.5
MEDIUM POC This Month

PrinterOn Enterprise 4.1.4 allows Arbitrary File Deletion. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Printeron
NVD Exploit-DB
EPSS 0% CVSS 7.0
HIGH POC This Week

PrinterOn Enterprise 4.1.3 stores the Active Directory bind credentials using base64 encoding, which allows local users to obtain credentials for a domain user by reading the cps_config.xml file. Rated high severity (CVSS 7.0). Public exploit code available and no vendor patch available.

Information Disclosure Printeron
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM POC This Month

PrinterOn Enterprise 4.1.3 suffers from multiple authenticated stored XSS vulnerabilities via the (1) department field in the printer configuration, (2) description field in the print server. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Printeron
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy