CVE-2025-64310_CVE-2025-64310

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

EPSON WebConfig and Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts. An administrative user's password may be identified through a brute force attack.

Basic Information

ID CVE-2025-64310

Source jpcert

Published Nov 21, 2025 at 02:36

Affected Product

Vendor SEIKO EPSON CORPORATION

Product EPSON WebConfig for SEIKO EPSON Projector Products

Version see the information provided by the vendor

Affected Versions SEIKO EPSON CORPORATION EPSON WebConfig for SEIKO EPSON Projector Products see the information provided by the vendor
SEIKO EPSON CORPORATION Epson Web Control for SEIKO EPSON Projector Products see the information provided by the vendor

CWE Classification

CWE-307

References

{
    "lastseen": "",
    "description": "EPSON WebConfig and Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts. An administrative user's password may be identified through a brute force attack.",
    "published": "2025-11-21T02:36:35.115Z",
    "modified": "2025-11-21T02:36:35.115Z",
    "type": "cve",
    "title": "CVE-2025-64310",
    "source": "jpcert",
    "references": "https://www.epson.jp/support/misc_t/251120_oshirase.htm\nhttps://jvn.jp/en/vu/JVNVU95021911/",
    "id": "CVE-2025-64310",
    "bulletinFamily": "",
    "cwe": [
        "CWE-307"
    ],
    "cvelist": null,
    "sourceData": "SEIKO EPSON CORPORATION EPSON WebConfig for SEIKO EPSON Projector Products see the information provided by the vendor\nSEIKO EPSON CORPORATION Epson Web Control for SEIKO EPSON Projector Products see the information provided by the vendor",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "EPSON WebConfig for SEIKO EPSON Projector Products",
    "version": "see the information provided by the vendor",
    "vendor": "SEIKO EPSON CORPORATION",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}