CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-19232

The web service on Epson WorkForce WF-2861 10.48 LQ22I3(Recovery-mode), WF-2861 10.51.LQ20I6, and WF-2861 10.52.LQ17IA devices allows remote attackers to cause a denial of service via a FIRMWAREUPDATE GET request, as demonstrated by the /DOWN/FIRMWAREUPDATE/ROM1 URI.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.2%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://github.com/epistemophilia/CVEs/blob/master/Epson-WorkForce-WF2861/CVE-2018-19232/poc-cve-2018-19232.py
https://github.com/epistemophilia/CVEs/blob/master/Epson-WorkForce-WF2861/CVE-2018-19232/poc-cve-2018-19232.py

Products affected by CVE-2018-19232

Epson » Epson Workforce Wf-2861 » Version: N/A

cpe:2.3:h:epson:epson_workforce_wf-2861:-
Epson » Epson Workforce Wf-2861 Firmware » Version: 10.48_lq22i3

cpe:2.3:o:epson:epson_workforce_wf-2861_firmware:10.48_lq22i3
Epson » Epson Workforce Wf-2861 Firmware » Version: 10.51.lq20i6

cpe:2.3:o:epson:epson_workforce_wf-2861_firmware:10.51.lq20i6
Epson » Epson Workforce Wf-2861 Firmware » Version: 10.52.lq17ia

cpe:2.3:o:epson:epson_workforce_wf-2861_firmware:10.52.lq17ia

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19232

Products

Pricing

Contact Us