7.5

CVE-2013-4613

EPSS 0.52%
Veröffentlicht 21.06.2013 21:55:01
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

The default configuration of the administrative interface on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers does not require authentication, which allows remote attackers to modify the configuration by visiting the Advanced page. NOTE: the vendor has apparently responded by stating "for user convenience, the default setting does not require a password. However, if a user has a particular concern about third parties accessing the user's home printer, the default setting can be changed to add a password."

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Canon ≫ Mg3100 Printer Version-

Canon ≫ Mg5300 Printer Version-

Canon ≫ Mg6100 Printer Version-

Canon ≫ Mp340 Printer Version-

Canon ≫ Mp495 Printer Version-

Canon ≫ Mx870 Printer Version-

Canon ≫ Mx890 Printer Version-

Canon ≫ Mx920 Printer Version-

Canon ≫ Mx922 Printer Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.52%	0.657

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://archives.neohapsis.com/archives/fulldisclosure/2013-06/0146.html

http://www.mattandreko.com/2013/06/canon-y-u-no-security.html

https://nvd.nist.gov/vuln/detail/CVE-2013-4613

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-4613

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-4613

EUVD