CVE-2019-20458

Name of the Vulnerable Software and Affected Versions Epson Expression Home XP255 version 20.08.FM10I8

Description An issue was discovered where the device comes without a password and the user is not prompted to set one up, allowing anyone to access the web admin panel and become admin without credentials.

Recommendations For Epson Expression Home XP255 version 20.08.FM10I8, consider setting up a password for the device to prevent unauthorized access to the web admin panel. As a temporary workaround, restrict access to the web admin panel until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.