CVE-2020-26508

EUVD-2020-19055
The WebTools component on Canon Oce ColorWave 3500 5.1.1.0 devices allows attackers to retrieve stored SMB credentials via the export feature, even though these are intentionally inaccessible in the UI.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 53%
Affected Products (NVD)
VendorProductVersion
canonoce_colorwave_3500_firmware
5.1.1.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.syss.de/pentest-blog/
https://www.syss.de/pentest-blog/