2020-03-19 18:11:22
mitre
PUBLISHED
The Canon Oce Colorwave 500 4.0.0.0 printers web application is missing any form of CSRF protections. This is a system-wide issue. An attacker could perform administrative actions by targeting a logged-in administrative user. NOTE: this is fixed in the latest version.