In Canon LBP223 printers, the System Manager Mode login does not require an account password or PIN. An attacker can remotely shut down the device after entering the background, creating a denial of service vulnerability.
References
Link | Resource |
---|---|
https://github.com/cxaqhq/cve-1 | Exploit Third Party Advisory |
https://github.com/cxaqhq/cve-1 | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 06:29
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/cxaqhq/cve-1 - Exploit, Third Party Advisory |
Information
Published : 2021-12-06 13:15
Updated : 2024-11-21 06:29
NVD link : CVE-2021-43471
Mitre link : CVE-2021-43471
CVE.ORG link : CVE-2021-43471
JSON object : View
Products Affected
canon
- lbp223dw
- lbp223dw_firmware
CWE
CWE-521
Weak Password Requirements