VYPR

S3

by Ultimaker

CVEs (2)

  • CVE-2021-34086HigJan 10, 2022
    risk 0.57cvss 8.8epss 0.01

    In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver hosts APIs vulnerable to CSRF. They do not verify incoming requests.

  • CVE-2021-34087HigJan 10, 2022
    risk 0.46cvss 7.1epss 0.01

    In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver can be used for clickjacking. This includes the settings page.