medium
4.8
CWE
79
Advisory Published
Updated

CVE-2023-23572: XSS

First published: Tue Apr 11 2023(Updated: )

Cross-site scripting vulnerability in SEIKO EPSON printers/network interface Web Config allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script. [Note] Web Config is the software that allows users to check the status and change the settings of SEIKO EPSON printers/network interface via a web browser. According to SEIKO EPSON CORPORATION, it is also called as Remote Manager in some products. Web Config is pre-installed in some printers/network interface provided by SEIKO EPSON CORPORATION. For the details of the affected product names/model numbers, refer to the information provided by the vendor.

Credit: vultures@jpcert.or.jp

Affected SoftwareAffected VersionHow to fix
All of
Epson Lp-9200ps2 Firmware
Epson Lp-9200ps2 Firmware
All of
Epson LP-9200PS3 Firmware
Epson LP-9200PS3 Firmware
All of
Epson LP-8200C
Epson LP-8200C
All of
Epson LP-9600 Firmware
Epson LP-9600 Firmware
All of
Epson LP-9600 Firmware
Epson LP-9600 Firmware
All of
Epson LP-9300
Epson LP-9300 Firmware
All of
Epson LP-8500C Firmware
Epson LP-8500C Firmware
All of
Epson Lp-8700ps3
Epson Lp-8700ps3 Firmware
All of
Epson LP-9800C Firmware
Epson LP-9800C Firmware
All of
Epson Lp-s5500 Firmware
Epson Lp-s5500 Firmware
All of
Epson Lp-9200b Firmware
Epson Lp-9200b Firmware
All of
Epson Lp-9200c Firmware
Epson Lp-9200c Firmware
All of
Epson Lp-s4500 Firmware
Epson LP-S4500
All of
Epson LP-S6500 Firmware
Epson LP-S6500 Firmware
All of
Epson Lp-s7000 Firmware
Epson Lp-s7000 Firmware
All of
Sharp Zaurus SL-5000D Firmware
Epson LP-S5000 Firmware
All of
Epson Lp-s4000 Firmware
Epson LP-S4000
All of
Epson Lp-s6000 Firmware
Epson LP-S6000
All of
Epson Lp-s5300r Firmware
Epson Lp-s5300r Firmware
All of
Epson Lp-s5300r Firmware
Epson Lp-s5300r Firmware
All of
Epson Lp-s300n Firmware
Epson Lp-s300n Firmware
All of
Epson Lp-s310n Firmware
Epson LP-S310N
All of
Epson Lp-s3000 Firmware
Epson Lp-s3000 Firmware
All of
Epson Lp-s3000r Firmware
Epson Lp-s3000r Firmware
All of
Epson Lp-s3000z Firmware
Epson Lp-s3000z Firmware
All of
Epson Lp-s3000ps Firmware
Epson Lp-s3000ps Firmware
All of
Epson Lp-s7500 Firmware
Epson Lp-s7500 Firmware
All of
Epson Lp-s7500ps Firmware
Epson Lp-s7500ps Firmware
All of
Epson Lp-s3500 Firmware
Epson LP-S3500
All of
Epson LP-S4200 Firmware
Epson LP-S4200 Firmware
All of
Epson Lp-s9000 Firmware
Epson LP-S9000 Driver
All of
Epson Lp-s7100 Firmware
Epson LP-S7100 Driver
All of
Epson Lp-s8100 Firmware
Epson LP-S8100
All of
Epson Prifnw1 Firmware
Epson Prifnw1 Firmware
All of
Epson Prifnw1 Firmware
Epson Prifnw1 Firmware
All of
Epson Prifnw2 Firmware
Epson Prifnw2 Firmware
All of
Epson Prifnw2ac Firmware
Epson Prifnw2ac Firmware
All of
Epson Prifnw2s Firmware
Epson Printer Firmware 2 Series
All of
Epson Prifnw2sac Firmware
Epson Prifnw2ac
All of
Epson Prifnw3s
Epson Print 3
All of
Epson Prifnw3s
Epson Prifnw3s Firmware
All of
Epson Prifnw6 Firmware
Epson Prifnw6 Firmware
All of
Epson Prifnw7u Firmware
Epson Print Driver for Windows 7
All of
Epson Prifnw7u
Epson Prifnw7u Firmware
All of
Epson Prifnw7s Firmware
Epson Prifnw7s Firmware
All of
Epson Pa-w11g
Epson PA-W11G Firmware
All of
Epson Pa-w11g2
Epson Pa-w11g2 Firmware
All of
Epson Esnsb1 Firmware
Epson Esnsb1 Firmware
All of
Epson Esnsb2 Firmware
Epson Esnsb2 Firmware
All of
Epson Esifnw1
Epson Esifnw1 Firmware
Epson Lp-9200ps2 Firmware
Epson Lp-9200ps2 Firmware
Epson LP-9200PS3 Firmware
Epson LP-9200PS3 Firmware
Epson LP-8200C
Epson LP-8200C
Epson LP-9600 Firmware
Epson LP-9600 Firmware
Epson LP-9600 Firmware
Epson LP-9600 Firmware
Epson LP-9300
Epson LP-9300 Firmware
Epson LP-8500C Firmware
Epson LP-8500C Firmware
Epson Lp-8700ps3
Epson Lp-8700ps3 Firmware
Epson LP-9800C Firmware
Epson LP-9800C Firmware
Epson Lp-s5500 Firmware
Epson Lp-s5500 Firmware
Epson Lp-9200b Firmware
Epson Lp-9200b Firmware
Epson Lp-9200c Firmware
Epson Lp-9200c Firmware
Epson Lp-s4500 Firmware
Epson LP-S4500
Epson LP-S6500 Firmware
Epson LP-S6500 Firmware
Epson Lp-s7000 Firmware
Epson Lp-s7000 Firmware
Sharp Zaurus SL-5000D Firmware
Epson LP-S5000 Firmware
Epson Lp-s4000 Firmware
Epson LP-S4000
Epson Lp-s6000 Firmware
Epson LP-S6000
Epson Lp-s5300r Firmware
Epson Lp-s5300r Firmware
Epson Lp-s5300r Firmware
Epson Lp-s5300r Firmware
Epson Lp-s300n Firmware
Epson Lp-s300n Firmware
Epson Lp-s310n Firmware
Epson LP-S310N
Epson Lp-s3000 Firmware
Epson Lp-s3000 Firmware
Epson Lp-s3000r Firmware
Epson Lp-s3000r Firmware
Epson Lp-s3000z Firmware
Epson Lp-s3000z Firmware
Epson Lp-s3000ps Firmware
Epson Lp-s3000ps Firmware
Epson Lp-s7500 Firmware
Epson Lp-s7500 Firmware
Epson Lp-s7500ps Firmware
Epson Lp-s7500ps Firmware
Epson Lp-s3500 Firmware
Epson LP-S3500
Epson LP-S4200 Firmware
Epson LP-S4200 Firmware
Epson Lp-s9000 Firmware
Epson LP-S9000 Driver
Epson Lp-s7100 Firmware
Epson LP-S7100 Driver
Epson Lp-s8100 Firmware
Epson LP-S8100
Epson Prifnw1 Firmware
Epson Prifnw1 Firmware
Epson Prifnw1 Firmware
Epson Prifnw1 Firmware
Epson Prifnw2 Firmware
Epson Prifnw2 Firmware
Epson Prifnw2ac Firmware
Epson Prifnw2ac Firmware
Epson Prifnw2s Firmware
Epson Printer Firmware 2 Series
Epson Prifnw2sac Firmware
Epson Prifnw2ac
Epson Prifnw3s
Epson Print 3
Epson Prifnw3s
Epson Prifnw3s Firmware
Epson Prifnw6 Firmware
Epson Prifnw6 Firmware
Epson Prifnw7u Firmware
Epson Print Driver for Windows 7
Epson Prifnw7u
Epson Prifnw7u Firmware
Epson Prifnw7s Firmware
Epson Prifnw7s Firmware
Epson Pa-w11g
Epson PA-W11G Firmware
Epson Pa-w11g2
Epson Pa-w11g2 Firmware
Epson Esnsb1 Firmware
Epson Esnsb1 Firmware
Epson Esnsb2 Firmware
Epson Esnsb2 Firmware
Epson Esifnw1
Epson Esifnw1 Firmware

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2023-23572?

    CVE-2023-23572 is categorized as a high-severity cross-site scripting vulnerability.

  • How do I fix CVE-2023-23572?

    To fix CVE-2023-23572, update the affected Epson printer firmware to the latest version provided by Epson.

  • Who is affected by CVE-2023-23572?

    CVE-2023-23572 affects various Epson printers that utilize the SEIKO EPSON network interface Web Config with administrative access.

  • What kind of attacks can exploit CVE-2023-23572?

    An attacker can exploit CVE-2023-23572 to inject arbitrary scripts into the web interface of vulnerable Epson printers.

  • What is the impact of CVE-2023-23572?

    The impact of CVE-2023-23572 includes potential data theft, session hijacking, or redirection of users to malicious websites.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203