CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-13199

Some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) did not implement any mechanism to avoid CSRF. Successful exploitation of this vulnerability can lead to the takeover of a local account on the device.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.9%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

https://www.nccgroup.trust/us/our-research/technical-advisory-multiple-vulnerabilities-in-kyocera-printers/
https://www.nccgroup.trust/us/our-research/technical-advisory-multiple-vulnerabilities-in-kyocera-printers/

Products affected by CVE-2019-13199

Kyocera » Ecosys M5526cdw » Version: N/A

cpe:2.3:h:kyocera:ecosys_m5526cdw:-
Kyocera » Ecosys M5526cdw Firmware » Version: 2r7_2000.001.701

cpe:2.3:o:kyocera:ecosys_m5526cdw_firmware:2r7_2000.001.701

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-13199

Products

Pricing

Contact Us