An issue was discovered on Epson WorkForce WF-2861 10.48 LQ22I3, 10.51.LQ20I6 and 10.52.LQ17IA devices. They use SNMP to find certain devices on the network, but the default version is v2c, allowing an amplification attack.
References
Link | Resource |
---|---|
https://github.com/epistemophilia/CVEs/blob/master/Epson-WorkForce-WF2861/CVE-2018-18960/poc-cve-2018-18960.py | Exploit Third Party Advisory |
https://github.com/epistemophilia/CVEs/blob/master/Epson-WorkForce-WF2861/CVE-2018-18960/poc-cve-2018-18960.py | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 03:56
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/epistemophilia/CVEs/blob/master/Epson-WorkForce-WF2861/CVE-2018-18960/poc-cve-2018-18960.py - Exploit, Third Party Advisory |
Information
Published : 2018-12-24 17:29
Updated : 2024-11-21 03:56
NVD link : CVE-2018-18960
Mitre link : CVE-2018-18960
CVE.ORG link : CVE-2018-18960
JSON object : View
Products Affected
epson
- epson_workforce_wf-2861
- epson_workforce_wf-2861_firmware
CWE
CWE-400
Uncontrolled Resource Consumption