CVE-2024-27155

{"id": "CVE-2024-27155", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "ecc0f906-8666-484c-bcf8-c3b7520a72f0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 2.5}]}, "published": "2024-06-14T04:15:18.290", "references": [{"url": "http://seclists.org/fulldisclosure/2024/Jul/1", "source": "ecc0f906-8666-484c-bcf8-c3b7520a72f0"}, {"url": "https://jvn.jp/en/vu/JVNVU97136265/index.html", "source": "ecc0f906-8666-484c-bcf8-c3b7520a72f0"}, {"url": "https://www.toshibatec.com/information/20240531_01.html", "source": "ecc0f906-8666-484c-bcf8-c3b7520a72f0"}, {"url": "https://www.toshibatec.com/information/pdf/information20240531_01.pdf", "source": "ecc0f906-8666-484c-bcf8-c3b7520a72f0"}, {"url": "http://seclists.org/fulldisclosure/2024/Jul/1", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://jvn.jp/en/vu/JVNVU97136265/index.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.toshibatec.com/information/20240531_01.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.toshibatec.com/information/pdf/information20240531_01.pdf", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "ecc0f906-8666-484c-bcf8-c3b7520a72f0", "description": [{"lang": "en", "value": "CWE-276"}]}], "descriptions": [{"lang": "en", "value": "The Toshiba printers are vulnerable to a Local Privilege Escalation vulnerability. An attacker can remotely compromise any Toshiba printer. The programs can be replaced by malicious programs by any local or remote attacker. As for the affected products/models/versions, see the reference URL."}, {"lang": "es", "value": "Las impresoras Toshiba son afectadas por una vulnerabilidad de escalada de privilegios local. Un atacante puede comprometer de forma remota cualquier impresora Toshiba. Los programas pueden ser reemplazados por programas maliciosos por cualquier atacante local o remoto. En cuanto a los productos/modelos/versiones afectados, consulte la URL de referencia."}], "lastModified": "2024-11-21T09:03:58.433", "sourceIdentifier": "ecc0f906-8666-484c-bcf8-c3b7520a72f0"}