An issue was discovered on Epson WorkForce WF-2861 10.48 LQ22I3, 10.51.LQ20I6 and 10.52.LQ17IA devices. They use SNMP to find certain devices on the network, but the default version is v2c, allowing an amplification attack.
References
Link | Resource |
---|---|
https://github.com/epistemophilia/CVEs/blob/master/Epson-WorkForce-WF2861/CVE-2018-18960/poc-cve-2018-18960.py | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2018-12-24 09:29
Updated : 2020-08-24 10:37
NVD link : CVE-2018-18960
Mitre link : CVE-2018-18960
JSON object : View
CWE
CWE-400
Uncontrolled Resource Consumption
Products Affected
epson
- epson_workforce_wf-2861_firmware
- epson_workforce_wf-2861