CVE-2012-1239

critical

Published 2012-04-06 · Modified 2026-04-29

CVSS v3

—

CVSS v2

10.0

VIR risk

10.0

Description

The TopAccess web-based management interface on TOSHIBA TEC e-Studio multi-function peripheral (MFP) devices with firmware 30x through 302, 35x through 354, and 4xx through 421 allows remote attackers to bypass authentication and obtain administrative privileges via unspecified vectors.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

Application impact

Vendor	Product	Versions
toshibatec	e-studio-167_with_network_printer_kit_firmware	`t282cn0j421`
toshibatec	e-studio-181_with_network_printer_kit_firmware	`t282cn0j421`
toshibatec	e-studio-182_with_network_printer_kit_firmware	`t282cn0j421`
toshibatec	e-studio-207_with_network_printer_kit_firmware	`t282cn0j421`
toshibatec	e-studio-232_firmware	`t377sy0j354`
toshibatec	e-studio-2330c_firmware	`t450sy0j302`
toshibatec	e-studio-2500c_firmware	`t380sy0j354`
toshibatec	e-studio-255_firmware	`t470sy0j302`
toshibatec	e-studio-255p_firmware	`t470sy0j302`
toshibatec	e-studio-281c_firmware	`t410sy0j354`
toshibatec	e-studio-282_firmware	`t377sy0j354`
toshibatec	e-studio-2830c_firmware	`t450sy0j302`
toshibatec	e-studio-3500c_firmware	`t380sy0j354`
toshibatec	e-studio-3510c_firmware	`t380sy0j354`
toshibatec	e-studio-351c_firmware	`t410sy0j354`
toshibatec	e-studio-352_firmware	`t364sy0j354`
toshibatec	e-studio-3520c_firmware	`t450sy0j302`
toshibatec	e-studio-355_firmware	`t470sy0j302`
toshibatec	e-studio-451c_firmware	`t410sy0j354`
toshibatec	e-studio-452_firmware	`t364sy0j354`
toshibatec	e-studio-4520c_firmware	`t450sy0j302`
toshibatec	e-studio-455_firmware	`t470sy0j302`
toshibatec	e-studio-5520c_firmware	`t430sy0j302`
toshibatec	e-studio-600_firmware	`t390sy0j354`
toshibatec	e-studio-6520c_firmware	`t430sy0j302`
toshibatec	e-studio-6530c_firmware	`t430sy0j302`
toshibatec	e-studio-655_firmware	`t100sy0j302`
toshibatec	e-studio-720_firmware	`t390sy0j354`
toshibatec	e-studio-755_firmware	`t100sy0j302`
toshibatec	e-studio-850_firmware	`t390sy0j354`
toshibatec	e-studio-855_firmware	`t100sy0j302`
toshibatec	e-studio-tf-182_with_network_printer_kit_firmware	`t282cn0j421`

References

CWEs

CWE-264

Verify integrity in audit chain (admin only). AS-IS.