Cross-site request forgery vulnerability in FUJIFILM printers
CVE-2024-27974

Currently unrated

Key Information:

Vendor: Fujifilm Business Inovation Corp.
Status: Docuprint P450 D; Docuprint P450 Jm; Docuprint P450 Ps; Docuprint P455 D
Vendor: CVE Published:; 18 March 2024

What is CVE-2024-27974?

Cross-site request forgery vulnerability in FUJIFILM printers which implement CentreWare Internet Services or Internet Services allows a remote unauthenticated attacker to alter user information. In the case the user is an administrator, the settings such as the administrator's ID, password, etc. may be altered. As for the details of affected product names, model numbers, and versions, refer to the information provided by the vendor listed under [References].

Affected Version(s)

ApeosPort-IV C2270 all versions

ApeosPort-IV C2270 R all versions

ApeosPort-IV C3370 all versions

References

https://www.fujifilm.com/fbglobal/eng/company/news/notice...

https://jvn.jp/en/jp/JVN34328023/

Timeline

Vulnerability published
Mar 18, 2024
Vulnerability Reserved
Feb 28, 2024

Fujifilm Business Inovation Corp.

What is CVE-2024-27974?

Affected Version(s)

References

Timeline