The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to Stored XSS in /TemplateManager/indexExternalLocation.jsp. The vulnerable parameter is map(template_name). NOTE: this is fixed in the latest version.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-03-19T18:07:48

Updated: 2024-08-04T11:06:10.647Z

Reserved: 2020-03-18T00:00:00

Link: CVE-2020-10667

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2020-03-19T19:15:11.770

Modified: 2020-03-23T17:34:40.413

Link: CVE-2020-10667

cve-icon Redhat

No data.