CVE Tools

epson

Hardware FirmwareJPcommercial

19

Cumulative CVEs

7

Monthly snapshots

#62

Peak rank

Top products

Latest CVEs

The 15 most recently published vulnerabilities affecting epson.

CVE-2025-4960macOS Local Privilege Escalation via Improper Authorization Handling in EPSON Printer Controller Installer7.8Feb 19, 2026
CVE-2020-37064EPSON EasyMP Network Projection 2.81 - 'EMP_NSWLSV' Unquoted Service Path7.8Feb 1, 2026
CVE-2020-36984EPSON 1.124 - 'seksmdb.exe' Unquoted Service Path7.8Jan 28, 2026
CVE-2023-38556Improper input validation vulnerability in SEIKO EPSON printer Web Config allows a remote attacker to turned off the printer. [Note] Web Config is the software that allows users to check the statu...7.5Aug 2, 2023
CVE-2023-27520Cross-site request forgery (CSRF) vulnerability in SEIKO EPSON printers/network interface Web Config allows a remote unauthenticated attacker to hijack the authentication and perform unintended ope...6.5Apr 11, 2023
CVE-2023-23572Cross-site scripting vulnerability in SEIKO EPSON printers/network interface Web Config allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script. [Note]...4.8Apr 11, 2023
CVE-2022-36133The WebConfig functionality of Epson TM-C3500 and TM-C7500 devices with firmware version WAM31500 allows authentication bypass.9.1Nov 25, 2022
CVE-2020-9453In Epson iProjection v2.30, the driver file EMP_MPAU.sys allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from...5.5Feb 5, 2021
CVE-2020-9014In Epson iProjection v2.30, the driver file (EMP_NSAU.sys) allows local users to cause a denial of service (BSOD) via crafted input to the virtual audio device driver with IOCTL 0x9C402402, 0x9C402...5.5Feb 5, 2021
CVE-2020-5681Untrusted search path vulnerability in self-extracting files created by EpsonNet SetupManager versions 2.2.14 and earlier, and Offirio SynergyWare PrintDirector versions 1.6x/1.6y and earlier allow...7.8Dec 24, 2020
CVE-2020-28931Lack of an anti-CSRF token in the entire administrative interface in EPSON EPS TSE Server 8 (21.0.11) allows an unauthenticated attacker to force an administrator to execute external POST requests ...8.8Dec 16, 2020
CVE-2020-28930A Cross-Site Scripting (XSS) issue in the 'update user' and 'delete user' functionalities in settings/users.php in EPSON EPS TSE Server 8 (21.0.11) allows an authenticated attacker to inject a Java...5.4Dec 16, 2020
CVE-2020-28929Unrestricted access to the log downloader functionality in EPSON EPS TSE Server 8 (21.0.11) allows an unauthenticated attacker to remotely retrieve administrative hashed credentials via the mainten...9.8Dec 16, 2020
CVE-2020-5674Untrusted search path vulnerability in the installers of multiple SEIKO EPSON products allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.7.8Nov 24, 2020
CVE-2020-12695The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qual...7.5Jun 8, 2020