CVE-2013-4613
Last modified
CVE-2013-4613 is a vulnerability of currently unknown severity. The default configuration of the administrative interface on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers does not require authentication, which allows remote attackers to modify the configuration by visiting the Advanced page. NOTE: the vendor has apparently responded by stating "for user convenience, the default setting does not require a password. EPSS estimates a 2.01% chance of exploitation in the next 30 days.
Description
The default configuration of the administrative interface on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers does not require authentication, which allows remote attackers to modify the configuration by visiting the Advanced page. NOTE: the vendor has apparently responded by stating "for user convenience, the default setting does not require a password. However, if a user has a particular concern about third parties accessing the user's home printer, the default setting can be changed to add a password."
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Canon | Mg3100 Printer | All versions |
| Canon | Mg5300 Printer | All versions |
| Canon | Mg6100 Printer | All versions |
| Canon | Mp340 Printer | All versions |
| Canon | Mp495 Printer | All versions |
| Canon | Mx870 Printer | All versions |
| Canon | Mx890 Printer | All versions |
| Canon | Mx920 Printer | All versions |
| Canon | Mx922 Printer | All versions |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-4613?
How severe is CVE-2013-4613?
How do I fix CVE-2013-4613?
Are you affected by CVE-2013-4613?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST