CVE-2018-0689

Name of the Vulnerable Software and Affected Versions SEIKO EPSON printers and scanners versions prior to various firmware versions released between 2017 and 2018, including but not limited to: DS-570W versions prior to 2018 March 13 DS-780N versions prior to 2018 March 13 EP-10VA versions prior to 2017 September 4 EP-30VA versions prior to 2017 June 19 EP-707A versions prior to 2017 August 1 EP-708A versions prior to 2017 August 7 EP-709A versions prior to 2017 June 12 EP-777A versions prior to 2017 August 1 EP-807AB/AW/AR versions prior to 2017 August 1 EP-808AB/AW/AR versions prior to 2017 August 7 EP-879AB/AW/AR versions prior to 2017 June 12 EP-907F versions prior to 2017 August 1 EP-977A3 versions prior to 2017 August 1 EP-978A3 versions prior to 2017 August 7 EP-979A3 versions prior to 2017 June 12 EP-M570T versions prior to 2017 September 6 EW-M5071FT versions prior to 2017 November 2 EW-M660FT versions prior to 2018 April 19 EW-M770T versions prior to 2017 September 6 PF-70 versions prior to 2018 April 20 PF-71 versions prior to 2017 July 18 PF-81 versions prior to 2017 September 14 PX-048A versions prior to 2017 July 4 PX-049A versions prior to 2017 September 11 PX-437A versions prior to 2017 July 24 PX-M350F versions prior to 2018 February 23 PX-M5040F versions prior to 2017 November 20 PX-M5041F versions prior to 2017 November 20 PX-M650A versions prior to 2017 October 17 PX-M650F versions prior to 2017 October 17 PX-M680F versions prior to 2017 June 29 PX-M7050F versions prior to 2017 October 13 PX-M7050FP versions prior to 2017 October 13 PX-M7050FX versions prior to 2017 November 7 PX-M7070FX versions prior to 2017 April 27 PX-M740F versions prior to 2017 December 4 PX-M741F versions prior to 2017 December 4 PX-M780F versions prior to 2017 June 29 PX-M781F versions prior to 2017 June 27 PX-M840F versions prior to 2017 November 16 PX-M840FX versions prior to 2017 December 8 PX-M860F versions prior to 2017 October 25 PX-S05B/W versions prior to 2018 March 9 PX-S350 versions prior to 2018 February 23 PX-S5040 versions prior to 2017 November 20 PX-S7050 versions prior to 2018 February 21 PX-S7050PS versions prior to 2018 February 21 PX-S7050X versions prior to 2017 November 7 PX-S7070X versions prior to 2017 April 27 PX-S740 versions prior to 2017 December 3 PX-S840 versions prior to 2017 November 16 PX-S840X versions prior to 2017 December 8 PX-S860 versions prior to 2017 December 7

Description The issue is related to an HTTP header injection vulnerability in SEIKO EPSON printers and scanners. This vulnerability may allow a remote attacker to lead a user to a phishing site or execute an arbitrary script on the user's web browser.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.