CVE-2026-39047

HIGH

EPSON L14150 FL27PB - Buffer Overflow via RAW Printing Service on TCP Port 9100

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2026-39047. PoCs published by AzhariRamadhan, fearlessresponsesolution.

AI-analyzed exploit summary PrintHack is a Python-based tool that exploits printer spooling vulnerabilities via Port 9100, enabling various attack vectors such as DoS, data exfiltration, and phishing QR code generation. It demonstrates the ability to send raw payloads, PCL commands, and large data volumes to printers for security testing.

Description

Buffer Overflow vulnerability in EPSON L14150 FL27PB allows a remote attacker to execute arbitrary code via the RAW Printing Service (JetDirect) on TCP port 9100

Exploits (2)

github WORKING POC 1 stars

by AzhariRamadhan · pythonpoc

https://github.com/AzhariRamadhan/CVE-2026-39047

View Code ZIP pw:eip

PrintHack is a Python-based tool that exploits printer spooling vulnerabilities via Port 9100, enabling various attack vectors such as DoS, data exfiltration, and phishing QR code generation. It demonstrates the ability to send raw payloads, PCL commands, and large data volumes to printers for security testing.

Classification

Working Poc 95%

Attack Type

Dos | Info Leak | Other

Complexity

Moderate

Reliability

Reliable

Target: Network printers with raw printing enabled (Port 9100)

No auth needed

Prerequisites: Network access to printer on Port 9100 · Python 3.6+ with Pillow, qrcode, and requests libraries

MITRE ATT&CK

T1499 - Endpoint Denial of Service T1005 - Data from Local System T1552 - Unsecured Credentials T1190 - Exploit Public-Facing Application

devstral-2 · analyzed May 21, 2026 Full analysis →

github WORKING POC

by fearlessresponsesolution · tsqlpoc

https://github.com/fearlessresponsesolution/cve-pocs/tree/master/pocs/CVE-2026-39047

View Code ZIP pw:eip

The repository contains a functional Python tool for exploiting printer vulnerabilities via raw spooling (Port 9100), including DoS, data exfiltration, and phishing capabilities. It demonstrates CVE-2026-39047 by sending crafted payloads to printers.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Network printers with raw spooling enabled (Port 9100)

No auth needed

Prerequisites: Network access to printer on Port 9100 · Python 3.6+ with dependencies (Pillow, qrcode, requests)

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed May 21, 2026 Full analysis →

References (2)

Core 2

Core References

https://github.com/AzhariRamadhan/CVE-PORT-9100

https://gist.github.com/AzhariRamadhan/1defc815542fb72e6025da2ce53a1046

Scores

CVSS v3 7.5

EPSS 0.0026

EPSS Percentile 49.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-121

Status published

Published May 20, 2026

Tracked Since May 20, 2026