CVE-2020-5674
HIGH
7,8
Source: [email protected]
Attack Vector: local
Attack Complexity: low
Privileges Required: none
User Interaction: required
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
MEDIUM
4,4
Source: [email protected]
Access Vector: local
Access Complexity: medium
Authentication: none
Confidentiality: partial
Integrity: partial
Availability: partial
Description
AI Translation Available
Untrusted search path vulnerability in the installers of multiple SEIKO EPSON products allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
EPSS (Exploit Prediction Scoring System)
Trend Analysis
EPSS (Exploit Prediction Scoring System)
Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.
EPSS Score
0,0008
Percentile
0,2th
Updated
EPSS Score Trend (Last 90 Days)
427
Uncontrolled Search Path Element
DraftCommon Consequences
Security Scopes Affected:
Confidentiality
Integrity
Availability
Potential Impacts:
Execute Unauthorized Code Or Commands
Applicable Platforms
All platforms may be affected
Application
Status Monitor 3 by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:status_monitor_3:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Easy Photo Print by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:easy_photo_print:-:*:*:*:*:camera_raw:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Prolab Print by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:prolab_print:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Scanner Driver by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:scanner_driver:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Photostarter by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:photostarter:3.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Photoquicker by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:photoquicker:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Print Image Framer Tool by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:print_image_framer_tool:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
E-Photo by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:e-photo:-:*:*:*:*:camera_raw:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Easy Settings by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:easy_settings:-:*:*:*:*:office:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Prolab Print by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:prolab_print:-:*:*:*:*:camera_raw:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Pm-T990 Integrated Installer by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:pm-t990_integrated_installer:-:*:*:*:*:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Creativity Suite by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:creativity_suite:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Album Print by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:album_print:-:*:*:*:*:update_program:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Net Config by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:net_config:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Link2 by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:link2:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Status Monitor 2 by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:status_monitor_2:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Print by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:print:-:*:*:*:*:playmemories_home:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Webconfig by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:webconfig:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Ec-01 Firmware by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:o:epson:ec-01_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Multi-Print Quicker by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:multi-print_quicker:-:*:*:*:*:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Print by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:print:-:*:*:*:*:silkypix:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Imaging Workshop by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:imaging_workshop:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Print by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:print:-:*:*:*:*:viewnx:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Colorio Easy Print by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:colorio_easy_print:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
E-Photo by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:e-photo:-:*:*:*:*:picture_motion_browser:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Net Software Development Kit by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:net_software_development_kit:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Color Calibration Utility by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:color_calibration_utility:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Universal Print Driver by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:universal_print_driver:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Colorbase by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:colorbase:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Web To Page by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:web_to_page:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Scan Icm Updater by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:scan_icm_updater:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Net Config Se by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:net_config_se:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Easy Photo Print by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:easy_photo_print:-:*:*:*:*:-:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Net Print by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:net_print:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Connect by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:connect:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Print Layout by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:print_layout:-:*:*:*:*:photoshop:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Photolier by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:photolier:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Remote Printer Driver by Epson
CPE Identifier
View Detailed Analysis
cpe:2.3:a:epson:remote_printer_driver:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://jvn.jp/en/jp/JVN26835001/index.html
https://www.epson.jp/support/misc_t/201119_oshirase.htm
https://www.epson.jp/support/pdf/fy20-001_softwareList_20201106_b.pdf
https://jvn.jp/en/jp/JVN26835001/index.html
https://www.epson.jp/support/misc_t/201119_oshirase.htm
https://www.epson.jp/support/pdf/fy20-001_softwareList_20201106_b.pdf