CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-42913

The SyncThru Web Service on Samsung SCX-6x55X printers allows an attacker to gain access to a list of SMB users and cleartext passwords by reading the HTML source code. Authentication is not required.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.8%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://medium.com/%40windsormoreira/samsung-printer-scx-6x55x-improper-access-control-cve-2021-42913-bd50837e5e9a
https://security.samsungmobile.com/securityUpdate.smsb
https://medium.com/%40windsormoreira/samsung-printer-scx-6x55x-improper-access-control-cve-2021-42913-bd50837e5e9a
https://security.samsungmobile.com/securityUpdate.smsb

Products affected by CVE-2021-42913

Samsung » Syncthru Web Service » Version: N/A

cpe:2.3:a:samsung:syncthru_web_service:-
Samsung » Scx-6555 » Version: N/A

cpe:2.3:h:samsung:scx-6555:-
Samsung » Scx-6555n » Version: N/A

cpe:2.3:h:samsung:scx-6555n:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-42913

Products

Pricing

Contact Us