PT-2019-9416 · Printeron · Printeron Central Print Services

Published

2019-07-29

Updated

2019-08-05

CVE-2018-17211

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions PrinterOn Central Print Services (CPS) versions 4.1.4 and earlier

Description An issue allows an unauthenticated attacker to view details about the printers associated with CPS via a crafted HTTP GET request.

Recommendations For PrinterOn Central Print Services (CPS) versions 4.1.4 and earlier, consider restricting access to the HTTP GET request endpoint to prevent unauthorized viewing of printer details until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2018-17211

Affected Products

Printeron Central Print Services

PT-2019-9416 · Printeron · Printeron Central Print Services

CVE-2018-17211

Weakness Enumeration

Related Identifiers

Affected Products

References · 4