Vulnerabilities (CVE)

Filtered by vendor Kyocera Subscribe

Filtered by product Ecosys M5526cdw

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-13198	1 Kyocera	2 Ecosys M5526cdw, Ecosys M5526cdw Firmware	2020-03-19	4.3 MEDIUM	6.1 MEDIUM
The web application of several Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) was affected by Stored XSS. Successful exploitation of this vulnerability can lead to session hijacking of the administrator in the web application or the execution of unwanted actions.
CVE-2019-13200	1 Kyocera	2 Ecosys M5526cdw, Ecosys M5526cdw Firmware	2020-03-18	4.3 MEDIUM	6.1 MEDIUM
The web application of several Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) was affected by Reflected XSS. Successful exploitation of this vulnerability can lead to session hijacking of the administrator in the web application or the execution of unwanted actions.
CVE-2019-13199	1 Kyocera	2 Ecosys M5526cdw, Ecosys M5526cdw Firmware	2020-03-18	4.3 MEDIUM	6.5 MEDIUM
Some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) did not implement any mechanism to avoid CSRF. Successful exploitation of this vulnerability can lead to the takeover of a local account on the device.