CVE-2024-47549

CVSS v3.1

7.4

High

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Sharp and Toshiba Tec MFPs (affected versions not specified)

Description The issue is related to the improper processing of query parameters in HTTP requests, which may lead to the contamination of unintended data in HTTP response headers. Accessing a crafted URL that points to an affected product can cause malicious scripts to be executed on the web browser.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Encoding or Escaping of Output

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-116CWE-644

Related Identifiers

CVE-2024-47549

Affected Products

Sharp Mfps

Toshiba Tec Mfps

CVE-2024-47549

Weakness Enumeration

Related Identifiers

Affected Products

References · 8