Remote Code Execution via Test Button in Kyocera Command Center RX

Remote Code Execution via Test Button in Kyocera Command Center RX

CVE-2019-6452 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Kyocera Command Center RX TASKalfa4501i and TASKalfa5052ci allows remote attackers to abuse the Test button in the machine address book to obtain a cleartext FTP or SMB password.

Learn more about our Web Application Penetration Testing UK.