First published: Wed Aug 02 2023(Updated: )
Improper input validation vulnerability in SEIKO EPSON printer Web Config allows a remote attacker to turned off the printer. [Note] Web Config is the software that allows users to check the status and change the settings of SEIKO EPSON printers via a web browser. Web Config is pre-installed in some printers provided by SEIKO EPSON CORPORATION. For the details of the affected product names/model numbers, refer to the information provided by the vendor.
Credit: vultures@jpcert.or.jp vultures@jpcert.or.jp
Affected Software | Affected Version | How to fix |
---|---|---|
Epson Ep-801a Firmware | ||
Epson Ep-801a | ||
Epson Ep-802a Firmware | ||
Epson Ep-802a | ||
Epson Ep-901a Firmware | ||
Epson Ep-901a | ||
Epson Ep-901f Firmware | ||
Epson Ep-901f | ||
Epson Ep-902a Firmware | ||
Epson Ep-902a | ||
Epson Pa-tcu1 Firmware | ||
Epson Pa-tcu1 | ||
Epson Pm-t960 Firmware | ||
Epson Pm-t960 | ||
Epson Pm-t990 Firmware | ||
Epson Pm-t990 | ||
Epson Px-201 Firmware | ||
Epson Px-201 | ||
Epson Px-502a Firmware | ||
Epson Px-502a | ||
Epson Px-601f Firmware | ||
Epson Px-601f | ||
Epson Px-602f Firmware | ||
Epson Px-602f |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-38556 is an improper input validation vulnerability in SEIKO EPSON printer Web Config that allows a remote attacker to turn off the printer.
The vulnerability in SEIKO EPSON printer Web Config occurs due to improper input validation, allowing a remote attacker to exploit the vulnerability and turn off the printer.
CVE-2023-38556 has a severity rating of 7.5 (high).
SEIKO EPSON printers with Web Config software are affected by CVE-2023-38556.
To fix CVE-2023-38556, apply the necessary updates and patches provided by SEIKO EPSON to the affected printer's Web Config software.