- Description
- Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow /wlmdeu%2f%2e%2e%2f%2e%2e directory traversal to read arbitrary files on the filesystem, even files that require root privileges. NOTE: this issue exists because of an incomplete fix for CVE-2020-23575.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 4.9
- Impact score
- 3.6
- Exploitability score
- 1.2
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:kyocera:d-copia253mf_plus_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CDBAAE37-A0A0-4417-8924-5BB81C489FCC",
"versionEndIncluding": "2vg_s000.002.561"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:kyocera:d-copia253mf_plus:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "F6597E71-E5D9-4A09-A39E-A2F3742D6B22"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]