CVE-2022-36133

The WebConfig functionality of Epson TM-C3500 and TM-C7500 devices with firmware version WAM31500 allows authentication bypass.

Affected products Warnungen 0 Metrics 3 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Epson ≫ Tm-c3500 Firmware Versionwam31500

Epson ≫ Tm-c3500 Version-

Epson ≫ Tm-c3510 Firmware Versionwam31500

Epson ≫ Tm-c3510 Version-

Epson ≫ Tm-c3520 Firmware Versionwam31500

Epson ≫ Tm-c3520 Version-

Epson ≫ Tm-c7500 Firmware Versionwam31500

Epson ≫ Tm-c7500 Version-

Epson ≫ Tm-c7500g Firmware Versionwam31500

Epson ≫ Tm-c7500g Version-

Epson ≫ Tm-c7510 Firmware Versionwam31500

Epson ≫ Tm-c7510 Version-

Epson ≫ Tm-c7510g Firmware Versionwam31500

Epson ≫ Tm-c7510g Version-

Epson ≫ Tm-c7520 Firmware Versionwam31500

Epson ≫ Tm-c7520 Version-

Epson ≫ Tm-c7520g Firmware Versionwam31500

Epson ≫ Tm-c7520g Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.128

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.1	3.9	5.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	9.1	3.9	5.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Vendor Advisory

Vendor Advisory

Product

CVE Source (NVD)

CVE Source (JSON)

EUVD