Versio.io

CVE-2021-20877

Common vulnerabilities & exposures (CVE)

CVE databaseCVE database blogpostRelease & EoL database
 
Published at: - 08-02-2022 12:15
Last modified: - 14-02-2022 10:07
Total changes: - 2

Description

Cross-site scripting vulnerability in Canon laser printers and small office multifunctional printers (LBP162L/LBP162, MF4890dw, MF269dw/MF265dw/MF264dw/MF262dw, MF249dw/MF245dw/MF244dw/MF242dw/MF232w, and MF229dw/MF224dw/MF222dw sold in Japan, imageCLASS MF Series (MF113W/MF212W/MF217W/MF227DW/MF229DW, MF232W/MF244DW/MF247DW/MF249DW, MF264DW/MF267DW/MF269DW/MF269DW VP, and MF4570DN/MF4570DW/MF4770N/MF4880DW/MF4890DW) and imageCLASS LBP Series (LBP113W/LBP151DW/LBP162DW ) sold in the US, and iSENSYS (LBP162DW, LBP113W, LBP151DW, MF269dw, MF267dw, MF264dw, MF113w, MF249dw, MF247dw, MF244dw, MF237w, MF232w, MF229dw, MF217w, MF212w, MF4780w, and MF4890dw) and imageRUNNER (2206IF, 2204N, and 2204F) sold in Europe) allows remote attackers to inject an arbitrary script via unspecified vectors.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Low
Attack complexity
Network
Attack vector
None
Availability
Low
Confidentiality
Low
Integrity
High
Privileges required
Changed
Scope
Required
User interaction
4.8
Base score
1.7
2.7
Exploitability score
Impact score
 

Verification logic

OR
vendor=canon AND product=2204f AND version=-
vendor=canon AND product=2204n AND version=-
vendor=canon AND product=2206if AND version=-
vendor=canon AND product=lbp113w AND version=-
vendor=canon AND product=lbp151dw AND version=-
vendor=canon AND product=lbp162 AND version=-
vendor=canon AND product=lbp162dw AND version=-
vendor=canon AND product=lbp162l AND version=-
vendor=canon AND product=mf113w AND version=-
vendor=canon AND product=mf212w AND version=-
vendor=canon AND product=mf217w AND version=-
vendor=canon AND product=mf222dw AND version=-
vendor=canon AND product=mf224dw AND version=-
vendor=canon AND product=mf227dw AND version=-
vendor=canon AND product=mf229dw AND version=-
vendor=canon AND product=mf232w AND version=-
vendor=canon AND product=mf237w AND version=-
vendor=canon AND product=mf242dw AND version=-
vendor=canon AND product=mf244dw AND version=-
vendor=canon AND product=mf245dw AND version=-
vendor=canon AND product=mf247dw AND version=-
vendor=canon AND product=mf249dw AND version=-
vendor=canon AND product=mf262dw AND version=-
vendor=canon AND product=mf264dw AND version=-
vendor=canon AND product=mf265dw AND version=-
vendor=canon AND product=mf267dw AND version=-
vendor=canon AND product=mf269dw AND version=-
vendor=canon AND product=mf269dw_vp AND version=-
vendor=canon AND product=mf4570dn AND version=-
vendor=canon AND product=mf4570dw AND version=-
vendor=canon AND product=mf4770n AND version=-
vendor=canon AND product=mf4780w AND version=-
vendor=canon AND product=mf4880dw AND version=-
vendor=canon AND product=mf4890dw AND version=-
 

Reference

 


Keywords

NVD

 

CVE-2021-20877

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures

 

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.