The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to Stored XSS in /TemplateManager/indexExternalLocation.jsp. The vulnerable parameter is map(template_name). NOTE: this is fixed in the latest version.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-03-19T18:07:48
Updated: 2024-08-04T11:06:10.647Z
Reserved: 2020-03-18T00:00:00
Link: CVE-2020-10667
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-03-19T19:15:11.770
Modified: 2020-03-23T17:34:40.413
Link: CVE-2020-10667
Redhat
No data.