We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-47005



Description

Sharp and Toshiba Tec MFPs provide configuration related APIs. They are expected to be called by administrative users only, but insufficiently restricted. A non-administrative user may execute some configuration APIs.

Reserved 2024-10-16 | Published 2024-10-25 | Updated 2024-10-25 | Assigner jpcert


HIGH: 8.1CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Problem types

Exposed dangerous method or function

Product status

see the information provided by Sharp Corporation
affected

T2.12.h3.00 and earlier versions
affected

T1.01.h4.00 and earlier versions
affected

T1.01.h4.00 and earlier versions
affected

References

jvn.jp/en/vu/JVNVU95063136/

global.sharp/products/copier/info/info_security_2024-10.html

www.toshibatec.com/information/20241025_01.html

cve.org (CVE-2024-47005)

nvd.nist.gov (CVE-2024-47005)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-47005

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.

© Copyright 2024 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.