CVE-2024-45829

Q: What is the severity of CVE-2024-45829?

CVE-2024-45829 has a CVSS score of 4.9 (MEDIUM). Sharp and Toshiba Tec multifunction printers (MFPs) have a web interface vulnerability where specially crafted HTTP requests can trigger an out-of-bounds read. This can cause affected devices to crash, leading to denial of service. Organizations using affected Sharp and Toshiba Tec MFP models are impacted.

4.9 MEDIUM

Denial of Service

📋 TL;DR

Sharp and Toshiba Tec multifunction printers (MFPs) have a web interface vulnerability where specially crafted HTTP requests can trigger an out-of-bounds read. This can cause affected devices to crash, leading to denial of service. Organizations using affected Sharp and Toshiba Tec MFP models are impacted.

💻 Affected Systems

Products:

Sharp MFPs
Toshiba Tec MFPs

Versions: Specific models listed in vendor advisories (check references)

Operating Systems: Embedded MFP firmware

Default Config Vulnerable: ⚠️ Yes

Notes: Affects web interface functionality; exact models vary by vendor - check specific advisories

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete device crash requiring physical restart, disrupting printing/scanning services for extended periods

🟠

Likely Case

Temporary service disruption until device automatically reboots or is manually restarted

🟢

If Mitigated

Minimal impact if devices are behind firewalls and not internet-facing

🌐 Internet-Facing: MEDIUM - Directly accessible devices can be crashed remotely, but no data theft or system compromise

🏢 Internal Only: LOW - Requires internal network access and provides only denial of service

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires sending crafted HTTP requests to the web interface

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Firmware updates specified in vendor advisories

Vendor Advisory: https://global.sharp/products/copier/info/info_security_2024-10.html

Restart Required: Yes

Instructions:

1. Identify affected MFP models from vendor advisories. 2. Download latest firmware from vendor support portal. 3. Apply firmware update following manufacturer instructions. 4. Verify update completion and restart device.

🔧 Temporary Workarounds

Disable web interface

all

Turn off web management interface if not required for operations

Network segmentation

all

Place MFPs on isolated network segments with restricted access

🧯 If You Can't Patch

Implement strict network ACLs to limit access to MFP web interfaces
Monitor for unusual HTTP requests to MFP management interfaces

🔍 How to Verify

Check if Vulnerable:

Check device model against vendor advisory lists; test with controlled HTTP request to web interface

Check Version:

Check firmware version via device web interface or control panel

Verify Fix Applied:

Verify firmware version matches patched version in vendor advisory; test web interface functionality

📡 Detection & Monitoring

Log Indicators:

Unusual HTTP requests to MFP web interfaces
Device reboot events without user action

Network Indicators:

HTTP requests with malformed query parameters to MFP ports (typically 80/443)

SIEM Query:

source_ip:* dest_port:(80 OR 443) dest_ip:MFP_IP_RANGE http.uri_query:*malformed*

📊 Metadata

CVE ID: CVE-2024-45829

CVSS v3 Score: 4.9 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-125

Published: October 25, 2024

Last Updated: November 5, 2024

🔗 References

https://global.sharp/products/copier/info/info_security_2024-10.html Vendor Advisory
https://jvn.jp/en/vu/JVNVU95063136/ Third Party Advisory
https://www.toshibatec.com/information/20241025_01.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Bp 30c25 Firmware by Sharp

Bp 30c25t Firmware by Sharp

Bp 30c25y Firmware by Sharp

Bp 30c25z Firmware by Sharp

Bp 30m28 Firmware by Sharp

Bp 30m28t Firmware by Sharp

Bp 30m31 Firmware by Sharp

Bp 30m31t Firmware by Sharp

Bp 30m35 Firmware by Sharp

Bp 30m35t Firmware by Sharp

Bp 50c26 Firmware by Sharp

Bp 50c31 Firmware by Sharp

Bp 50c36 Firmware by Sharp

Bp 50c45 Firmware by Sharp

Bp 50c55 Firmware by Sharp

Bp 50c65 Firmware by Sharp

Bp 50m26 Firmware by Sharp

Bp 50m31 Firmware by Sharp

Bp 50m36 Firmware by Sharp

Bp 50m45 Firmware by Sharp

Bp 50m50 Firmware by Sharp

Bp 50m55 Firmware by Sharp

Bp 55c26 Firmware by Sharp

Bp 60c31 Firmware by Sharp

Bp 60c36 Firmware by Sharp

Bp 60c45 Firmware by Sharp

Bp 70c31 Firmware by Sharp

Bp 70c36 Firmware by Sharp

Bp 70c45 Firmware by Sharp

Bp 70c55 Firmware by Sharp

Bp 70c65 Firmware by Sharp

Bp 70m31 Firmware by Sharp

Bp 70m36 Firmware by Sharp

Bp 70m45 Firmware by Sharp

Bp 70m55 Firmware by Sharp

Bp 70m65 Firmware by Sharp

Bp 70m75 Firmware by Sharp

Bp 70m90 Firmware by Sharp

Bp 90c70 Firmware by Sharp

Bp 90c80 Firmware by Sharp

Bp B537wr Firmware by Sharp

Bp B540wr Firmware by Sharp

Bp B547wd Firmware by Sharp

Bp B550wd Firmware by Sharp

Bp C533wd Firmware by Sharp

Bp C533wr Firmware by Sharp

Bp C535wd Firmware by Sharp

Bp C535wr Firmware by Sharp

Bp C542wd Firmware by Sharp

Bp C545wd Firmware by Sharp

Dx 2000u Firmware by Sharp

Dx 2500n Firmware by Sharp

Dx C310 Firmware by Sharp

Dx C311 Firmware by Sharp

Dx C311j Firmware by Sharp

Dx C381 Firmware by Sharp

Dx C400 Firmware by Sharp

Dx C401 Firmware by Sharp

Dx C401 J Firmware by Sharp

E Studio1058 Firmware by Toshibatec

E Studio1208 Firmware by Toshibatec

E Studio908 Firmware by Toshibatec

Mx 1810u Firmware by Sharp

Mx 2010u Firmware by Sharp

Mx 2301n Firmware by Sharp

Mx 2310r Firmware by Sharp

Mx 2310u Firmware by Sharp

Mx 2314n Firmware by Sharp

Mx 2314nr Firmware by Sharp

Mx 2600g Firmware by Sharp

Mx 2600n Firmware by Sharp

Mx 2601n Firmware by Sharp

Mx 2610n Firmware by Sharp

Mx 2614n Firmware by Sharp

Mx 2615 A Firmware by Sharp

Mx 2615n Firmware by Sharp

Mx 2616n Firmware by Sharp