Sharp Bp-50c36 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Sharp Bp-50c36 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2022-45796 — CVSS 9.1 (critical): Command injection vulnerability in nw_interface.html in SHARP multifunction printers (MFPs)'s Digital Full-color Multifunctional System 202…
CVE-2024-47406 — CVSS 9.1 (critical): Sharp and Toshiba Tec MFPs improperly process HTTP authentication requests, resulting in an authentication bypass vulnerability.
CVE-2024-47005 — CVSS 8.1 (high): Sharp and Toshiba Tec MFPs provide configuration related APIs. They are expected to be called by administrative users only, but…
CVE-2024-42420 — CVSS 7.5 (high): Sharp and Toshiba Tec MFPs contain multiple Out-of-bounds Read vulnerabilities, due to improper processing of keyword search input and…
CVE-2024-43424 — CVSS 7.5 (high): Sharp and Toshiba Tec MFPs improperly process HTTP request headers, resulting in an Out-of-bounds Read vulnerability. Crafted HTTP requests…
CVE-2024-47549 — CVSS 7.4 (high): Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, which may allow contamination of unintended data to HTTP…
CVE-2024-47801 — CVSS 7.4 (high): Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, resulting in a reflected cross-site scripting…
CVE-2024-48870 — CVSS 6.2 (medium): Sharp and Toshiba Tec MFPs improperly validate input data in URI data registration, resulting in a stored cross-site scripting…
CVE-2024-45842 — CVSS 5.3 (medium): Sharp and Toshiba Tec MFPs improperly process URI data in HTTP PUT requests resulting in a path Traversal vulnerability. Unintended…
CVE-2024-45829 — CVSS 4.9 (medium): Sharp and Toshiba Tec MFPs provide the web page to download data, where query parameters in HTTP requests are improperly processed and…