CVE-2020-6091
9.8
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
An exploitable authentication bypass vulnerability exists in the ESPON Web Control functionality of Epson EB-1470Ui MAIN: 98009273ESWWV107 MAIN2: 8X7325WWV303. A specially crafted series of HTTP requests can cause authentication bypass resulting in information disclosure. An attacker can send an HTTP request to trigger this vulnerability.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Epson | Epson EB-1470Ui MAIN: 98009273ESWWV107 MAIN2: 8X7325WWV303 | affected |
Weaknesses
- CWE-288: CWE-288: Authentication Bypass Using an Alternate Path or Channel
ADP Enrichment
CVE Program Container
Additional References
- https://talosintelligence.com/vulnerability_reports/TALOS-2020-1011
- https://epson.com/support/wa00907
References
- https://talosintelligence.com/vulnerability_reports/TALOS-2020-1011
- https://epson.com/support/wa00907
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.