CVE-2026-23767

Critical CVSS: 9.8

ESC/POS, a printer control language designed by Seiko Epson Corporation, lacks mechanisms for user authentication and command authorization, does not provide controls to restrict sources or destinations of network communication, and transmits commands without encryption or integrity protection.

Vendor

Epson

Product

Sb-h50 Firmware

CWE

CWE-306

Yayın Tarihi

2026-03-05 06:16:22

Güncelleme

2026-03-09 18:42:01

Source Identifier

vultures@jpcert.or.jp

KEV Date Added

Kategoriler

CWE-306 Sb-h50 Firmware CRITICAL Epson 2026

Referanslar

https://download4.epson.biz/sec_pubs/bs/pdf/IP_Filtering_Guide_en_revA.pdf https://jvn.jp/en/ta/JVNTA97995322/ https://www.epson.jp/support/misc_t/260305_oshirase.htm