CVE Tools

kyocera

Hardware FirmwareJPcommercial

18

Cumulative CVEs

4

Monthly snapshots

#50

Peak rank

Top products

fs-1370dn firmware3 fs-c2026mfp firmware3 fs-c2126mfp firmware3

Latest CVEs

The 15 most recently published vulnerabilities affecting kyocera.

CVE-2022-50932Kyocera Command Center RX ECOSYS M2035dn - Directory Traversal File Disclosure (Unauthenticated)7.5Jan 13, 2026
CVE-2019-25254KYOCERA Net Admin 3.4.0906 Cross-Site Request Forgery via User Administration8.8Dec 24, 2025
CVE-2019-25253KYOCERA Net Admin 3.4.0906 Unauthenticated XML External Entity Injection7.5Dec 24, 2025
CVE-2023-50916Kyocera Device Manager before 3.1.1213.0 allows NTLM credential exposure during UNC path authentication via a crafted change from a local path to a UNC path. It allows administrators to configure t...7.2Jan 10, 2024
CVE-2023-34261Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow identification of valid user accounts via username enumeration because they lead to a "nicht einloggen" error rather than a falsch er...5.3Nov 3, 2023
CVE-2023-34260Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow a denial of service (service outage) via /wlmdeu%2f%2e%2e%2f%2e%2e followed by a directory reference such as %2fetc%00index.htm to tr...7.5Nov 3, 2023
CVE-2023-34259Kyocera TASKalfa 4053ci printers through 2VG_S000.002.561 allow /wlmdeu%2f%2e%2e%2f%2e%2e directory traversal to read arbitrary files on the filesystem, even files that require root privileges. NOT...4.9Nov 3, 2023
CVE-2023-25954KYOCERA Mobile Print' v3.2.0.230119 and earlier, 'UTAX/TA MobilePrint' v3.2.0.230119 and earlier, and 'Olivetti Mobile Print' v3.2.0.230119 and earlier are vulnerable to improper intent handling. W...5.5Apr 13, 2023
CVE-2022-41830Stored cross-site scripting vulnerability in Kyocera Document Solutions MFPs and printers allows a remote authenticated attacker with an administrative privilege to inject arbitrary script. Affecte...4.8Dec 5, 2022
CVE-2022-41807Missing authorization vulnerability exists in Kyocera Document Solutions MFPs and printers, which may allow a network-adjacent attacker to alter the product settings without authentication by sendi...6.5Dec 5, 2022
CVE-2022-41798Session information easily guessable vulnerability exists in Kyocera Document Solutions MFPs and printers, which may allow a network-adjacent attacker to log in to the product by spoofing a user wi...6.5Dec 5, 2022
CVE-2022-1026Kyocera Net View Address Book Exposure8.6Apr 4, 2022
CVE-2020-23575A directory traversal vulnerability exists in Kyocera Printer d-COPIA253MF plus. Successful exploitation of this vulnerability could allow an attacker to retrieve or view arbitrary files from the a...7.5May 10, 2021
CVE-2020-25890The web application of Kyocera printer (ECOSYS M2640IDW) is affected by Stored XSS vulnerability, discovered in the addition a new contact in "Machine Address Book". Successful exploitation of this...6.1Nov 17, 2020
CVE-2019-13195The web application of some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) was vulnerable to path traversal, allowing an unauthenticated user to retrieve arbitrary files, or check ...7.5Mar 13, 2020