CVE-2023-23594 Information

Description

An authentication bypass vulnerability in the web client interface for the CL4NX printer before firmware version 1.13.3-u724_r2 provides remote unauthenticated attackers with access to execute commands intended only for valid/authenticated users such as file uploads and configuration changes.

Reference

https://hackandpwn.com/disclosures/CVE-2023-23594.pdf https://www.satoamerica.com/products/printers/industrial-thermal-printers/cl4nx-plus