Unrated severityNVD Advisory· Published Mar 5, 2026· Updated Mar 6, 2026

CVE-2026-23767

Description

ESC/POS, a printer control language designed by Seiko Epson Corporation, lacks mechanisms for user authentication and command authorization, does not provide controls to restrict sources or destinations of network communication, and transmits commands without encryption or integrity protection.

Affected products

Seiko Epson Corporation/Esc/posv5
Range: All products implementing ESC/POS

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

download4.epson.biz/sec_pubs/bs/pdf/IP_Filtering_Guide_en_revA.pdfmitre
jvn.jp/en/ta/JVNTA97995322/mitre
www.epson.jp/support/misc_t/260305_oshirase.htmmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000