Unrated severityNVD Advisory· Published Oct 25, 2024· Updated Oct 25, 2024
CVE-2024-48870
CVE-2024-48870
Description
Sharp and Toshiba Tec MFPs improperly validate input data in URI data registration, resulting in a stored cross-site scripting vulnerability. If crafted input is stored by an administrative user, malicious script may be executed on the web browsers of other victim users.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- Sharp Corporation/Sharp Digital Full-color MFPs and Monochrome MFPsv5Range: see the information provided by Sharp Corporation
- Toshiba Tec Corporation/e-STUDIO 1058v5Range: T1.01.h4.00 and earlier versions
- Toshiba Tec Corporation/e-STUDIO 1208v5Range: T1.01.h4.00 and earlier versions
- Toshiba Tec Corporation/e-STUDIO 908v5Range: T2.12.h3.00 and earlier versions
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.