Admin Access Vulnerability Affects Multiple Products/Models/Versions
CVE-2024-27180

6.7MEDIUM

Key Information:

Vendor
Toshiba
Status
Toshiba Tec E-studio Multi-function Peripheral (mfp)
Vendor
CVE Published:
14 June 2024

Summary

An attacker with admin access can install rogue applications. As for the affected products/models/versions, see the reference URL.

Affected Version(s)

Toshiba Tec e-Studio multi-function peripheral (MFP) Linux see the reference URL

References

https://www.toshibatec.com/information/20240531_01.html
https://www.toshibatec.com/information/pdf/information202...
https://jvn.jp/en/vu/JVNVU97136265/index.html

CVSS V3.1

Score:
6.7
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

We expresses its gratitude to Pierre Barre for reporting relevant security vulnerabilities for our products.
.