Stefan Michlits

**Name of the Vulnerable Software and Affected Versions** Kyocera TASKalfa 4053ci printers versions 2VG S000.002.561 and earlier **Description** The issue allows directory traversal to read arbitrary files on the filesystem, even files that require root privileges, via the `/wlmdeu%2f%2e%2e%2f%2e%2e` endpoint. This is due to an incomplete fix for a previous issue. **Recommendations** For versions 2VG S000.002.561 and earlier, as a temporary workaround, consider restricting access to the `/wlmdeu%2f%2e%2e%2f%2e%2e` endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Kyocera TASKalfa 4053ci printers versions 2VG S000.002.561 and earlier **Description** The issue allows a denial of service (service outage) via the "/wlmdeu%2f%2e%2e%2f%2e%2e" endpoint followed by a directory reference such as "%2fetc%00index.htm" to try to read the /etc directory. **Recommendations** For Kyocera TASKalfa 4053ci printers versions 2VG S000.002.561 and earlier, as a temporary workaround, consider restricting access to the "/wlmdeu%2f%2e%2e%2f%2e%2e" endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Kyocera TASKalfa 4053ci printers through 2VG S000.002.561 **Description** The issue allows identification of valid user accounts via username enumeration. This occurs because the system returns a "nicht einloggen" error rather than a "falsch" error when an attempt is made to access an account. **Recommendations** For Kyocera TASKalfa 4053ci printers through 2VG S000.002.561, consider restricting access to the login functionality to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.