CVE-2021-43471

EUVD-2021-30402
In Canon LBP223 printers, the System Manager Mode login does not require an account password or PIN. An attacker can remotely shut down the device after entering the background, creating a denial of service vulnerability.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 52%
Affected Products (NVD)
VendorProductVersion
canonlbp223dw_firmware
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/cxaqhq/cve-1
https://github.com/cxaqhq/cve-1