We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2019-20458



Description

An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. By default, the device comes (and functions) without a password. The user is at no point prompted to set up a password on the device (leaving a number of devices without a password). In this case, anyone connecting to the web admin panel is capable of becoming admin without using any credentials.

Reserved 2020-02-17 | Published 2024-11-07 | Updated 2024-11-08 | Assigner mitre

References

epson.com/Support/wa00826

seclists.org/fulldisclosure/2024/Jul/14 (20240729 Bunch of IoT CVEs) mailing-list

cve.org (CVE-2019-20458)

nvd.nist.gov (CVE-2019-20458)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2019-20458

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.