CVE-2026-23767

CVE-2026-23767

Vendor Seiko Epson Corporation
Product ESC/POS
Weakness CWE-306 · Missing auth
Published March 5, 2026
Last update March 6, 2026

CVSS base score

What the vulnerability does

01Description

ESC/POS, a printer control language designed by Seiko Epson Corporation, lacks mechanisms for user authentication and command authorization, does not provide controls to restrict sources or destinations of network communication, and transmits commands without encryption or integrity protection.

Key dates

02Disclosure timeline

March 5, 2026 CVE published
March 6, 2026 Record updated