The web application of Kyocera printer (ECOSYS M2640IDW) is affected by Stored XSS vulnerability, discovered in the addition a new contact in "Machine Address Book". Successful exploitation of this vulnerability can lead to session hijacking of the administrator in the web application or the execution of unwanted actions
References
Link | Resource |
---|---|
https://vitor-santos.medium.com/xss-in-kyocera-printer-ecosys-m2640idw-cf6d3bc525e3 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-11-17T20:05:23
Updated: 2020-11-17T20:05:23
Reserved: 2020-09-24T00:00:00
Link: CVE-2020-25890
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-11-17T21:15:12.363
Modified: 2020-12-01T20:20:41.260
Link: CVE-2020-25890
JSON object: View
Redhat Information
No data.
CWE