Authentication Bypass in Epson EB-1470Ui Web Control Functionality
CVE-2020-6091
9.8CRITICAL
What is CVE-2020-6091?
An authentication bypass vulnerability exists within the ESPON Web Control functionality of the Epson EB-1470Ui projector. This issue allows attackers to bypass authentication mechanisms by sending specially crafted HTTP requests. As a consequence, unauthorized users may gain access to sensitive information stored in the system, posing significant risks to data security and user privacy. It is crucial for organizations using affected versions to implement necessary patches and safeguards to mitigate this vulnerability.
Affected Version(s)
Epson Epson EB-1470Ui MAIN: 98009273ESWWV107 MAIN2: 8X7325WWV303
References
CVSS V3.1
Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
CVSS V3.0
Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
