CVE Vulnerabilities

CVE-2024-3496

Authentication Bypass Using an Alternate Path or Channel

Published: Jun 14, 2024 | Modified: Nov 21, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

Attackers can bypass the web login authentication process to gain access to the printers system information and upload malicious drivers to the printer. As for the affected products/models/versions, see the reference URL.

Weakness

A product requires authentication, but the product has an alternate path or channel that does not require authentication.

Potential Mitigations

References