CVE-2018-16656

DoBox_CstmBox_Info.model.htm on Kyocera TASKalfa 4002i and 6002i devices allows remote attackers to read the documents of arbitrary users via a modified HTTP request.
References
Link Resource
https://mars-cheng.github.io/blog/2019/CVE-2018-16656 Exploit Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:kyocera:taskalfa_4002i_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:kyocera:taskalfa_4002i:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:kyocera:taskalfa_6002i_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:kyocera:taskalfa_6002i:-:*:*:*:*:*:*:*

Information

Published : 2019-05-14 13:29

Updated : 2019-05-16 07:05


NVD link : CVE-2018-16656

Mitre link : CVE-2018-16656


JSON object : View

CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Advertisement

dedicated server usa

Products Affected

kyocera

  • taskalfa_4002i_firmware
  • taskalfa_6002i
  • taskalfa_4002i
  • taskalfa_6002i_firmware