

When scan transmission is interrupted by a network error, a physically accessible attacker could steal the scanned image data by removing the HDD before the scan job times out. When using external authentication with an LDAP server, a remote attacker could steal specific authentication information in Administrator settings by sending specific SOAP messages.ĬVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N If external server authentication is used, a remote attacker with administrative privileges could steal user credentials by sending specific SOAP messages.ĬVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Reference identification numberĬVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N Note: Below is the result of risk evaluation assuming that MFP is installed in a general office protected by a firewall. Here, we report the overview of the problems and our measures for the vulnerabilities. We deeply appreciate your constant patronage to our products.įive vulnerabilities have been identified in the affected devices.
