writeups.xyz / 17 vulnerabilities in Sharp Multi-Function Printers

Submitter : c2a

Date: 27 June 2024

Bounty : undisclosed

Vulnerabilities :

• Printer Hacking
• RCE
• Information Disclosure
• Memory Corruption
• Buffer Overflow
• DoS
• LFI
• XSS
• Hardcoded API Keys
• Default Credentials
• Missing Authentication
• Directory Listing
• Authentication Bypass
• LDAP

Programs :

• Sharp
• Toshiba

Authors :

• Pierre Kim (@PierreKimSec)

Link :
https://pierrekim.github.io/blog/2024-06-27-sharp-mfp-17-vulnerabilities.html