Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Toshiba Tec Corporation — Vulnerabilities & Security Advisories 44

Browse all 44 CVE security advisories affecting Toshiba Tec Corporation. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Toshiba Tec Corporation specializes in office automation solutions, primarily manufacturing multifunction printers and document management systems. These devices serve as critical infrastructure for enterprise document workflows, often handling sensitive corporate data. Security audits reveal a significant vulnerability footprint, with 44 Common Vulnerabilities and Exposures (CVEs) currently on record. Historically, the most prevalent flaw classes include remote code execution (RCE), cross-site scripting (XSS), and privilege escalation issues. These defects frequently stem from inadequate input validation and weak authentication mechanisms within the embedded firmware and web interfaces. Notable incidents involve unauthorized access to device settings and potential data exfiltration through unpatched network services. The high volume of CVEs suggests persistent challenges in securing legacy hardware components against modern attack vectors. Organizations deploying these systems must prioritize regular firmware updates and network segmentation to mitigate risks associated with these documented weaknesses.

Top products by Toshiba Tec Corporation: Toshiba Tec e-Studio multi-function peripheral (MFP) e-STUDIO 908
CVE IDTitleCVSSSeverityPublished
CVE-2024-48870 Sharp MFP 安全漏洞 — e-STUDIO 908CWE-79 6.2 Medium2024-10-25
CVE-2024-3498 Incorrect Permission Assignment Privilege Escalation Vulnerability — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-250 7.8 High2024-06-14
CVE-2024-3497 Directory Traversal Remote Code Execution Vulnerability — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-23 8.8 High2024-06-14
CVE-2024-3496 Authentication Bypass Vulnerability — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-288 8.8 High2024-06-14
CVE-2024-27180 TOCTOU vulnerability — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-276 6.7 Medium2024-06-14
CVE-2024-27179 Session disclosure inside the log files — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-1295 4.7 Medium2024-06-14
CVE-2024-27178 Remote Code Execution — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-22 7.2 High2024-06-14
CVE-2024-27177 Remote Code Execution — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-22 7.2 High2024-06-14
CVE-2024-27176 Remote Code Execution — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-22 7.2 High2024-06-14
CVE-2024-27175 Local File Inclusion — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-73 4.4 Medium2024-06-14
CVE-2024-27174 insecure upload — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-22 9.8 Critical2024-06-14
CVE-2024-27173 insecure upload — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-22 9.8 Critical2024-06-14
CVE-2024-27172 Remote Code Execution — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-78 9.8 Critical2024-06-14
CVE-2024-27171 Insecure permissions — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-276 7.4 High2024-06-14
CVE-2024-27170 Hardcoded credentials for WebDAV access — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-798 7.4 High2024-06-14
CVE-2024-27169 Lack of authentication — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-306 8.4 High2024-06-14
CVE-2024-27168 Hardcoded keys used to generate authentication cookies — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-798 7.1 High2024-06-14
CVE-2024-27167 Insecure permissions — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-276 7.4 High2024-06-14
CVE-2024-27166 Insecure permissions — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-276 7.4 High2024-06-14
CVE-2024-27165 Local Privilege Escalation — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-272 7.8 High2024-06-14
CVE-2024-27164 Hardcoded credentials — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-259 7.1 High2024-06-14
CVE-2024-27163 Leak of admin password and passwords — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-319 6.5 Medium2024-06-14
CVE-2024-27162 DOM-based XSS — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-79 6.1 Medium2024-06-14
CVE-2024-27161 Hardcoded password used to encrypt files — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-798 6.2 Medium2024-06-14
CVE-2024-27160 Hardcoded password used to encrypt logs and use of weak cipher — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-798 6.2 Medium2024-06-14
CVE-2024-27159 Hardcoded password used to encrypt logs — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-798 6.2 Medium2024-06-14
CVE-2024-27158 Hardcoded root password — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-1392 7.4 High2024-06-14
CVE-2024-27157 Leak of authentication sessions in secure logs — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-532 6.8 Medium2024-06-14
CVE-2024-27156 Leak of authentication sessions in secure logs — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-532 6.8 Medium2024-06-14
CVE-2024-27155 Local Privilege Escalation and Remote Code Execution using insecure permissions — Toshiba Tec e-Studio multi-function peripheral (MFP)CWE-276 7.7 High2024-06-14

This page lists every published CVE security advisory associated with Toshiba Tec Corporation. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.