{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-29T02:20:23.894","vulnerabilities":[{"cve":{"id":"CVE-2024-33605","sourceIdentifier":"vultures@jpcert.or.jp","published":"2024-11-26T08:15:05.650","lastModified":"2026-06-17T07:32:04.763","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper processing of some parameters of installed_emanual_list.html leads to a path traversal vulnerability. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References]."},{"lang":"es","value":"El procesamiento incorrecto de algunos parámetros de installed_emanual_list.html genera una vulnerabilidad de path traversal. Para obtener información sobre los nombres de los productos afectados, los números de modelo y las versiones, consulte la información proporcionada por los respectivos proveedores que se encuentra en [Referencias]."}],"affected":[{"source":"vultures@jpcert.or.jp","affectedData":[{"vendor":"Sharp Corporation","product":"Multiple MFPs (multifunction printers)","versions":[{"version":"See the information provided by Sharp Corporation listed under [References]","status":"affected"}]},{"vendor":"Toshiba Tec Corporation","product":"Multiple MFPs (multifunction printers)","versions":[{"version":"See the information provided by Toshiba Tec Corporation listed under [References]","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"vultures@jpcert.or.jp","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2024-12-09T22:10:08.649799Z","id":"CVE-2024-33605","options":[{"exploitation":"none"},{"automatable":"yes"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"vultures@jpcert.or.jp","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://global.sharp/products/copier/info/info_security_2024-05.html","source":"vultures@jpcert.or.jp"},{"url":"https://jp.sharp/business/print/information/info_security_2024-05.html","source":"vultures@jpcert.or.jp"},{"url":"https://jvn.jp/en/vu/JVNVU93051062/","source":"vultures@jpcert.or.jp"},{"url":"https://pierrekim.github.io/blog/2024-06-27-sharp-mfp-17-vulnerabilities.html","source":"vultures@jpcert.or.jp"},{"url":"https://www.toshibatec.co.jp/information/20240531_02.html","source":"vultures@jpcert.or.jp"},{"url":"https://www.toshibatec.com/information/20240531_02.html","source":"vultures@jpcert.or.jp"},{"url":"http://seclists.org/fulldisclosure/2024/Jul/0","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}