CVE-2024-3497

HIGH

Toshiba Printer - Path Traversal

Title source: llm

Description

Path traversal vulnerability in the web server of the Toshiba printer enables attacker to overwrite orginal files or add new ones to the printer. As for the affected products/models/versions, see the reference URL.

References (3)

[Third Party Advisory] https://jvn.jp/en/vu/JVNVU97136265/index.html

[Various Sources] https://www.toshibatec.com/information/20240531_01.html

[Various Sources] https://www.toshibatec.com/information/pdf/information20240531_01.pdf

Scores

CVSS v3 8.8

EPSS 0.0019

EPSS Percentile 40.7%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-23

Status published

Products (1)

Toshiba Tec Corporation/Toshiba Tec e-Studio multi-function peripheral (MFP) see the reference URL

Published Jun 14, 2024

Tracked Since Feb 18, 2026