Martijn Baalman

**Name of the Vulnerable Software and Affected Versions** Epson Expression Home XP255 version 20.08.FM10I8 **Description** An issue was discovered where POST requests do not require anti-CSRF tokens or other mechanisms for validating that the request is from a legitimate source. This allows for CSRF attacks to be used to send text directly to the RAW printer interface, potentially delivering unwanted printouts to end users. **Recommendations** For Epson Expression Home XP255 version 20.08.FM10I8, consider disabling the ability to send POST requests to the printer interface until a patch is available. Restrict access to the printer's RAW interface to minimize the risk of exploitation. Update to the latest firmware as soon as it becomes available to mitigate this issue.

**Name of the Vulnerable Software and Affected Versions** Alecto IVM-100 2019-11-12 Tk-star nan (affected versions not specified) Svakom Nan (affected versions not specified) Alecto nan (affected versions not specified) Loven nan (affected versions not specified) Sannce products (affected versions not specified) Brother printers (affected versions not specified) **Description** An issue was discovered in the custom UDP protocol used by the devices to start and control video and audio services. The protocol has been partially reverse engineered, revealing that no password or username is transferred over this protocol. As a result, it is possible to set up sessions with the device over the Internet using the encoded UID, since authentication happens at the client side. **Recommendations** For Alecto IVM-100 2019-11-12, consider disabling the custom UDP protocol until a patch is available. For Tk-star nan, update to the latest version immediately to mitigate risks. For Svakom Nan, update to the latest version immediately to mitigate risks. For Alecto nan, update to the latest release to mitigate risks. For Loven nan, update to the latest version to mitigate potential threats. For Sannce products, update to the latest firmware and follow security best practices. For Brother printers, update to the latest firmware provided by Brother to mitigate risks. At the moment, there is no information about a newer version that contains a fix for this vulnerability for some of the affected products.

**Name of the Vulnerable Software and Affected Versions** Alecto IVM-100 version 2019-11-12 **Description** An issue was discovered where a large amount of information is disclosed when attaching to the serial interface at the board level and rebooting the device. This includes the view password and the password of the Wi-Fi access point that the device used. **Recommendations** For Alecto IVM-100 version 2019-11-12, as a temporary workaround, consider restricting access to the serial interface at the board level until a patch is available. However, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 (affected versions not specified) **Description** An issue was discovered that allows control of the camera's pan/zoom/tilt functionality using TELNET without a password. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** WiZ Colors A60 version 1.14.0 **Description** An issue was discovered where Wi-Fi credentials are stored in cleartext in flash memory. This presents an information-disclosure risk for a discarded or resold device. **Recommendations** For WiZ Colors A60 version 1.14.0, consider updating to a newer version that securely stores Wi-Fi credentials to mitigate the risk of information disclosure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.