PT-2019-12097 · Fujifilm · Fujifilm Fcr Capsula X+2

Published

2019-04-30

Updated

2020-10-02

CVE-2019-10950

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Fujifilm FCR Capsula X version CR-IR 357 Fujifilm FCR Carbon X version CR-IR 357 Fujifilm FCR XC-2 version CR-IR 357

Description The issue concerns the provision of insecure telnet services that lack authentication requirements. This could allow an attacker to access the underlying operating system if the vulnerability is successfully exploited.

Recommendations For Fujifilm FCR Capsula X version CR-IR 357, consider disabling the telnet service until a secure alternative or patch is available. For Fujifilm FCR Carbon X version CR-IR 357, restrict access to the telnet service to minimize the risk of exploitation. For Fujifilm FCR XC-2 version CR-IR 357, avoid using the telnet service for remote access until the issue is resolved.

Fix

Improper Access Control

Missing Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284CWE-306

Related Identifiers

CVE-2019-10950

Affected Products

Fujifilm Fcr Capsula X

Fujifilm Fcr Carbon X

Fujifilm Fcr Xc-2

PT-2019-12097 · Fujifilm · Fujifilm Fcr Capsula X+2

CVE-2019-10950

Weakness Enumeration

Related Identifiers

Affected Products

References · 3