🛡️ CVE-2023-27520
🟡 CVSS 6.5 — Medium ✅ No Known Exploit CWE-352 NVD
6.5
CVSS Score
0 Low4 Medium7 High9 Critical10

Description

Cross-site request forgery (CSRF) vulnerability in SEIKO EPSON printers/network interface Web Config allows a remote unauthenticated attacker to hijack the authentication and perform unintended operations by having a logged-in user view a malicious page. [Note] Web Config is the software that allows users to check the status and change the settings of SEIKO EPSON printers/network interface via a web browser. According to SEIKO EPSON CORPORATION, it is also called as Remote Manager in some products. Web Config is pre-installed in some printers/network interface provided by SEIKO EPSON CORPORATION. For the details of the affected product names/model numbers, refer to the information provided by the vendor.

Details

Severity MEDIUM
CVSS Score 6.5
CVSS Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
CWE CWE-352
Public Exploit ✅ No
Source NVD
Published 2023-04-11
Updated 2026-06-08
Modified 2025-02-10
Fix URL N/A

Affected Packages

Software From version Fixed in
esifnw1-firmware
esnsb1-firmware
esnsb2-firmware
lp-8200c-firmware
lp-8500c-firmware
lp-8700ps3-firmware
lp-9200b-firmware
lp-9200c-firmware
lp-9200ps2-firmware
lp-9200ps3-firmware
lp-9300-firmware
lp-9600-firmware
lp-9600s-firmware
lp-9800c-firmware
lp-s3000-firmware
lp-s3000ps-firmware
lp-s3000r-firmware
lp-s3000z-firmware
lp-s300n-firmware
lp-s310n-firmware
lp-s3500-firmware
lp-s4000-firmware
lp-s4200-firmware
lp-s4500-firmware
lp-s5000-firmware
lp-s5300-firmware
lp-s5300r-firmware
lp-s5500-firmware
lp-s6000-firmware
lp-s6500-firmware
lp-s7000-firmware
lp-s7100-firmware
lp-s7500-firmware
lp-s7500ps-firmware
lp-s8100-firmware
lp-s9000-firmware
pa-w11g-firmware
pa-w11g2-firmware
prifnw1-firmware
prifnw1s-firmware
prifnw2-firmware
prifnw2ac-firmware
prifnw2s-firmware
prifnw2sac-firmware
prifnw3-firmware
prifnw3s-firmware
prifnw6-firmware
prifnw7-firmware
prifnw7s-firmware
prifnw7u-firmware
px-20000-firmware
px-5002-firmware
px-5800-firmware
px-5v-firmware
px-6250s-firmware
px-6550-firmware
px-7500n-firmware
px-7550-firmware
px-7550s-firmware
px-7v-firmware
px-9500n-firmware
px-9550-firmware
px-9550s-firmware
px-b500-firmware
px-b510-firmware
px-f10000-firmware
px-f8000-firmware
px-f8000m-firmware
px-h10000-firmware
px-h6000-firmware
px-h7000-firmware
px-h8000-firmware
px-h9000-firmware
px-w8000-firmware
sc-f2000-firmware
sc-f2150-firmware
sc-f6000-firmware
sc-f6200-firmware
sc-f6350-firmware
sc-f7100-firmware
sc-f7200-firmware
sc-f9200-firmware
sc-f9350-firmware
sc-f9450-firmware
sc-f9450h-firmware
sc-p10050-firmware
sc-p20050-firmware
sc-p5050-firmware
sc-p6050-firmware
sc-p7050-firmware
sc-p8050-firmware
sc-p9050-firmware
sc-px3v-firmware
sc-px5v2-firmware
sc-px7v2-firmware
sc-s30650-firmware
sc-s40650-firmware
sc-s50650-firmware
sc-s60650-firmware
sc-s60650l-firmware
sc-s70650-firmware
sc-s80650-firmware
sc-s80650l-firmware
sc-t3050-firmware
sc-t3250-firmware
sc-t3255-firmware
sc-t5050-firmware
sc-t5250-firmware
sc-t5250d-firmware
sc-t5255-firmware
sc-t5255d-firmware
sc-t7050-firmware
sc-t7250-firmware
sc-t7250d-firmware
sc-t7255-firmware
sc-t7255d-firmware
stylus-pro-gs6000-firmware
tm-c3400-firmware
tm-c3500-firmware
tm-c7500-firmware

Similar Threats

Exploit Protection

Help block exploit attempts

BotEraser is designed to detect and help reduce malicious bot traffic that may target known vulnerabilities on your site.

Try BotEraser Free →

No credit card required  ·  Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.