CVE-2020-6091
First published: Fri May 22 2020(Updated: )
An exploitable authentication bypass vulnerability exists in the ESPON Web Control functionality of Epson EB-1470Ui MAIN: 98009273ESWWV107 MAIN2: 8X7325WWV303. A specially crafted series of HTTP requests can cause authentication bypass resulting in information disclosure. An attacker can send an HTTP request to trigger this vulnerability.
Credit: talos-cna@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Epson Eb-1470ui Firmware | ||
| Epson EB-1470Ui |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this security issue?
The vulnerability ID of this security issue is CVE-2020-6091.
What is the severity rating of CVE-2020-6091?
CVE-2020-6091 has a severity rating of 9.1 (Critical).
What is the affected software for CVE-2020-6091?
The affected software for CVE-2020-6091 is Epson Eb-1470ui Firmware.
How can an attacker exploit CVE-2020-6091?
An attacker can exploit CVE-2020-6091 by sending a specially crafted series of HTTP requests to the ESPON Web Control functionality of Epson EB-1470Ui, resulting in authentication bypass and information disclosure.
Are there any references for CVE-2020-6091?
Yes, you can find references for CVE-2020-6091 at the following links: [Epson Support](https://epson.com/support/wa00907) and [Talos Intelligence](https://talosintelligence.com/vulnerability_reports/TALOS-2020-1011).
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/epson
- canonical/epson eb-1470ui firmware
- canonical/epson eb-1470ui