Canon Oce Colorwave 500 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Canon Oce Colorwave 500 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2020-10671 — CVSS 8.8 (high): The Canon Oce Colorwave 500 4.0.0.0 printer's web application is missing any form of CSRF protections. This is a system-wide issue. An…
CVE-2020-10669 — CVSS 7.5 (high): The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to authentication bypass on the page /home.jsp. An…
CVE-2020-10667 — CVSS 6.1 (medium): The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to Stored XSS in /TemplateManager/indexExternalLoca…
CVE-2020-10668 — CVSS 6.1 (medium): The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to Reflected XSS in /home.jsp. The vulnerable…
CVE-2020-10670 — CVSS 6.1 (medium): The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to Reflected XSS in the parameter settingId of the…