DoBox_CstmBox_Info.model.htm on Kyocera TASKalfa 4002i and 6002i devices allows remote attackers to read the documents of arbitrary users via a modified HTTP request.
References
Link | Resource |
---|---|
https://mars-cheng.github.io/blog/2019/CVE-2018-16656 | Exploit Third Party Advisory |
Information
Published : 2019-05-14 13:29
Updated : 2019-05-16 07:05
NVD link : CVE-2018-16656
Mitre link : CVE-2018-16656
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
kyocera
- taskalfa_4002i_firmware
- taskalfa_6002i
- taskalfa_4002i
- taskalfa_6002i_firmware