Vulnerability Details CVE-2018-17313
On the RICOH MP C307 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 69.8%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
Products affected by CVE-2018-17313
-
cpe:2.3:h:ricoh:mp_c307:-
-
cpe:2.3:o:ricoh:mp_c307_firmware:-