PT-2024-21705 · Toshiba Tec · Toshiba Tec E-Studio Multi-Function Peripheral+35
Pierre Barre
·
Published
2024-06-14
·
Updated
2024-07-04
·
CVE-2024-27171
CVSS v3.1
7.4
High
| Vector | AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
No specific software or versions are mentioned in the provided descriptions.
Description
A remote attacker can exploit the insecure upload functionality to overwrite any Python file, resulting in Remote Code Execution.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Toshiba Tec E-Studio Multi-Function Peripheral
E-Studio-2010-Ac
E-Studio-2015-Nc
E-Studio-2020 Ac
E-Studio-2021 Ac
E-Studio-2110-Ac
E-Studio-2510-Ac
E-Studio-2515-Nc
E-Studio-2520 Nc
E-Studio-2521 Ac
E-Studio-2525 Ac
E-Studio-2528-A
E-Studio-2610-Ac
E-Studio-2615-Nc
E-Studio-3015-Nc
E-Studio-3025 Ac
E-Studio-3028-A
E-Studio-3115-Nc
E-Studio-330-Ac
E-Studio-3515-Nc
E-Studio-3525 Ac
E-Studio-3528-A
E-Studio-3615-Nc
E-Studio-400-Ac
E-Studio-4525 Ac
E-Studio-4528-A
E-Studio-5525 Ac
E-Studio-5528-A
E-Studio-6525 Ac
E-Studio-6526-Ac
E-Studio-6527-Ac
E-Studio-6528-A
E-Studio-6529-A
E-Studio-7527-Ac
E-Studio-7529-A
E-Studio-9029-A