{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-08T11:47:06.702","vulnerabilities":[{"cve":{"id":"CVE-2024-33610","sourceIdentifier":"vultures@jpcert.or.jp","published":"2024-11-26T08:15:05.810","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"\"sessionlist.html\" and \"sys_trayentryreboot.html\" are accessible with no authentication. \"sessionlist.html\" provides logged-in users' session information including session cookies, and \"sys_trayentryreboot.html\" allows to reboot the device. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References]."},{"lang":"es","value":"Sharp and Toshiba Tec MFPs\n\"sessionlist.html\" y \"sys_trayentryreboot.html\" son accesibles sin autenticación. \"sessionlist.html\" proporciona información de la sesión de los usuarios que han iniciado sesión, incluidas las cookies de sesión, y \"sys_trayentryreboot.html\" permite reiniciar el dispositivo. En cuanto a los detalles de los nombres de los productos afectados, los números de modelo y las versiones, consulte la información proporcionada por los respectivos proveedores que se enumeran en [Referencias]."}],"metrics":{"cvssMetricV31":[{"source":"vultures@jpcert.or.jp","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2}]},"weaknesses":[{"source":"vultures@jpcert.or.jp","type":"Secondary","description":[{"lang":"en","value":"CWE-288"}]}],"references":[{"url":"https://global.sharp/products/copier/info/info_security_2024-05.html","source":"vultures@jpcert.or.jp"},{"url":"https://jp.sharp/business/print/information/info_security_2024-05.html","source":"vultures@jpcert.or.jp"},{"url":"https://jvn.jp/en/vu/JVNVU93051062/","source":"vultures@jpcert.or.jp"},{"url":"https://pierrekim.github.io/blog/2024-06-27-sharp-mfp-17-vulnerabilities.html","source":"vultures@jpcert.or.jp"},{"url":"https://www.toshibatec.co.jp/information/20240531_02.html","source":"vultures@jpcert.or.jp"},{"url":"https://www.toshibatec.com/information/20240531_02.html","source":"vultures@jpcert.or.jp"},{"url":"http://seclists.org/fulldisclosure/2024/Jul/0","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}