CVE-2008-0374

EPSS 2.13%
Veröffentlicht 22.01.2008 20:00:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

OKI C5510MFP Printer CU H2.15, PU 01.03.01, System F/W 1.01, and Web Page 1.00 sends the configuration of the printer in cleartext, which allows remote attackers to obtain the administrative password by connecting to TCP port 5548 or 7777.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Oki ≫ C5510mfp Firmware Version1.01

Oki ≫ C5510mfp Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.13%	0.838

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

CWE-319 Cleartext Transmission of Sensitive Information

The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

http://secunia.com/advisories/28553

Vendor Advisory

Broken Link

http://securityreason.com/securityalert/3569

Third Party Advisory

http://www.csnc.ch/en/modules/news/news_0004.html_1394092626.html

Broken Link

http://www.securityfocus.com/archive/1/486511/100/0/threaded

Third Party Advisory

Broken Link

VDB Entry

http://www.securityfocus.com/bid/27339

Third Party Advisory

Broken Link

VDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/39775

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2008-0374

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-0374

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-0374

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2008-0374