Cross-Site Request Forgery Vulnerability in Epson Expression Home Printers
CVE-2019-20460
8.8HIGH
What is CVE-2019-20460?
Epson Expression Home XP255 printers have a security flaw that allows attackers to exploit the lack of anti-CSRF tokens in POST requests. This vulnerability makes it possible for unauthorized actors to initiate actions directly to the printer, potentially resulting in unauthorized print jobs. Attackers can send malicious content, leading to puzzling or alarming user experiences as unauthorized printouts are delivered. Ensuring proper security measures are in place is critical for preventing such vulnerabilities in IoT devices.
