CVE-2021-43471 Information

Description

In Canon LBP223 printers the System Manager Mode login does not require an account password or PIN. An attacker can remotely shut down the device after entering the background creating a denial of service vulnerability.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Reference

https://github.com/cxaqhq/cve-1

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

HIGH

Base Severity

7.5