Cross Site Scripting Vulnerability in Epson WebConfig for TM Products

Vulnerability Reference: CVE-2017-6443

Description: The EPSON WebConfig utility (Web Version) for the TM products listed below have a vulnerability that may compromise the security of the printer’s web browser. Note this vulnerability is only present in products with built-in Ethernet or wireless network.

Impact: Successful exploitation of this vulnerability can lead to unauthorized control of the system by a low privilege user. Epson is not aware of any reported incidents to date.

Solution: To ensure the security of your Epson product, please download and install the EPSON Firmware Update for your product below. In the meantime, and as a general rule to help secure all devices, end-users and their administrators should always implement and maintain industry-standard security controls and practices in setting up and managing their networks. Those practices include immediately replacing default passwords with strong passwords and installing printer software behind a firewall.

This firmware is compatible with Windows 11, Windows 10 32/64-bit, Windows 8.1 32/64-bit, Windows 8 32/64-bit, Windows 7 32/64-bit, Windows Vista 32/64-bit, Windows XP 32/64-bit, Windows 2000.

Affected Models		Affected Firmware Versions	New Firmware Version	Installation Instructions	Download
C3400	C31CC35A9991	1.01 and below	1.02	Instructions (PDF)	DOWNLOAD
C3400	C31CA26031	1.03 and below	1.04	Instructions (PDF)	DOWNLOAD
H2000	C31CB26A9911 (with UB-E04)	1.04 and below	1.05	Instructions (PDF)	DOWNLOAD
H6000IV	C31CB25A5971 (with UB-E04)	1.04R06-mPOS and below	1.05r07	Instructions (PDF)	DOWNLOAD
H6000IV	C31CB25A5981 (with UB-E04) C31CB25A5991 (with UB-E04) C31CB25A6001 (with UB-E04)	1.04 and below	1.05	Instructions (PDF)	DOWNLOAD
H6000IV*	C31CB25A7571 (with UB-R04) C31CB25A7581 (with UB-R04)	1.10 and below	1.12	Instructions (PDF)	DOWNLOAD
H6000IV-DT	C31CD83342	ePOS-Device System version 3.02 and below	ePOS-Device System version 3.03	Instructions (PDF)	DOWNLOAD
L90-i	All Models	Intelligent unit firmware version 4.43 and below	Intelligent unit firmware version 4.44	Instructions (PDF)	DOWNLOAD
L90Plus	C31C412A7641 (with UB-E04) C31C412A7711 (with UB-E04)	1.04 and below	1.05	Instructions (PDF)	DOWNLOAD
L90Plus*	C31C412A7721 (with UB-R04)	1.10 and below	1.12	Instructions (PDF)	DOWNLOAD
L90PlusLFC	C31C412A7651 (with UB-E04) C31C412A7661 (with UB-E04)	1.04 and below	1.05	Instructions (PDF)	DOWNLOAD
L90PlusLFC*	C31C412A7871 (with UB-R04)	1.10 and below	1.12	Instructions (PDF)	DOWNLOAD
m10	C31CE74022 C31CE74032 C31CE74021 C31CE74031	1.51 and below	1.60	Instructions (PDF)	DOWNLOAD
m30	C31CE95012 C31CE95022 C31CE95042 C31CE95A9992 C31CE95011 C31CE95021 C31CE95041 C31CE95A9982	1.10 and below	1.2	Instructions (PDF)	DOWNLOAD
P20*	C31CE14012	Network firmware version 1.14 and below	Network firmware version 1.18	Instructions (PDF)	DOWNLOAD
P60II*	C31CC79312 C31CC79A9931 C31CC79012 C31CC79A9991	Network firmware version 1.14 and below	Network firmware version 1.18	Instructions (PDF)	DOWNLOAD
P80*	C31CD70012 C31CD70A9991	Network firmware version 1.14 and below	Network firmware version 1.18	Instructions (PDF)	DOWNLOAD
P80Plus*	C31CD70312	Network firmware version 1.14 and below	Network firmware version 1.18	Instructions (PDF)	DOWNLOAD
T20II (mPOS)*	C31CD52A9961 (with UB-R04) C31CD52A9951 (with UB-R04)	R04 firmware version 1.01 AIP and below	v1.02AIP	Instructions (PDF)	DOWNLOAD
T20II Ethernet Plus	C31CD52A9902	10.02 and below	10.10	Instructions (PDF)	DOWNLOAD
T20II-i	T20II-i with 2 USB ports	Intelligent unit firmware version 4.42 and below	Intelligent unit firmware version 4.44	Instructions (PDF)	DOWNLOAD
T20II-i	T20II-i with 4 USB ports	Intelligent unit firmware version 4.42 and below	Intelligent unit firmware version 4.44	Instructions (PDF)	DOWNLOAD
T20II-i	T20II-i with a VGA port	Intelligent unit firmware version 4.42 and below	Intelligent unit firmware version 4.44	Instructions (PDF)	DOWNLOAD
T20II Ethernet Plus (mPOS)	C31CD52A9912	1.01 mPOS-RTSC and below	1.02 mPOS-RTSC	Instructions (PDF)	DOWNLOAD
T70-i	T70-i with 2 USB ports	Intelligent unit firmware version 4.42 and below	Intelligent unit firmware version 4.44	Instructions (PDF)	DOWNLOAD
T70-i	T70-i with 4 USB ports	Intelligent unit firmware version 4.42 and below	Intelligent unit firmware version 4.44	Instructions (PDF)	DOWNLOAD
T70-i	T70-i with a VGA port	Intelligent unit firmware version 4.42 and below	Intelligent unit firmware version 4.44	Instructions (PDF)	DOWNLOAD
T70II	C31CD38A9801 (with UB-E04)	1.04 and below	1.05	Instructions (PDF)	DOWNLOAD
T70II	C31CD38A9782 (with UB-E04)	1.04R06-mPOS and below	1.05r07	Instructions (PDF)	DOWNLOAD
T70II*	C31CD38A9951 (with UB-R04) C31CD38A9981 (with UB-R04)	1.10 and below	1.12	Instructions (PDF)	DOWNLOAD
T88IV Restick	C31C636A6661 (with UB-E04) C31C636A6671 (with UB-E04)	1.04 and below	1.05	Instructions (PDF)	DOWNLOAD
T88IV Restick*	C31C636A6801 (with UB-R04) C31C636A6791 (with UB-R04)	1.10 and below	1.12	Instructions (PDF)	DOWNLOAD
T88V	C31CA85A5722 (with UB-E04) C31CA85656 (with UB-E04) C31CA85655 (with UB-E04) C31CA85A5691 (with UB-E04) C31CA85A5711 (with UB-E04) C31CA85A5701 (with UB-E04)	1.04 and below	1.05	Instructions (PDF)	DOWNLOAD
T88V(UB-E04 mPOS)	C31CA85A5742 (with UB-E04)	1.04R06-mPOS and below	1.05r07	Instructions (PDF)	DOWNLOAD
T88V*	C31CA85A6351 (with UB-R04) C31CA85A6361 (with UB-R04) C31CA85A6221 (with UB-R04) C31CA85A6211 (with UB-R04)	1.10 and below	1.12	Instructions (PDF)	DOWNLOAD
T88V-DT	C31CC74742 C31CC74744 C31CC74746 C31CC74741	ePOS-Device System version 3.02 and below	ePOS-Device System version 3.03	Instructions (PDF)	DOWNLOAD
T88VI	All Models	40.01 and below	40.02	Instructions (PDF)	DOWNLOAD
T88V-i	T88V-i with 2 USB ports	Intelligent unit firmware version 4.42 and below	Intelligent unit firmware version 4.44	Instructions (PDF)	DOWNLOAD
T88V-i	T88V-i with 4 USB ports	Intelligent unit firmware version 4.42 and below	Intelligent unit firmware version 4.44	Instructions (PDF)	DOWNLOAD
T88V-i	T88V-i with a VGA port	Intelligent unit firmware version 4.42 and below	Intelligent unit firmware version 4.44	Instructions (PDF)	DOWNLOAD
U220A	C31C513A8681 (with UB-E04)	1.04 and below	1.05	Instructions (PDF)	DOWNLOAD
U220B	C31C514767 (with UB-E04) C31C514A7831 (with UB-E04) C31C514A7851 (with UB-E04) C31C514A7841 (with UB-E04) C31C514A7861 (with UB-E04) C31C514A7871 (with UB-E04)	1.04 and below	1.05	Instructions (PDF)	DOWNLOAD
U220B	C31C514A7881 (with UB-E04)	1.04R06-mPOS and below	1.05r07	Instructions (PDF)	DOWNLOAD
U220B*	C31C514A8071 (with UB-R04)	1.10 and below	1.12	Instructions (PDF)	DOWNLOAD
U220D	C31C515A8491 (with UB-E04) C31C515A8481 (with UB-E04)	1.04 and below	1.05	Instructions (PDF)	DOWNLOAD
U220-i	U220-i with 2 USB ports	Intelligent unit firmware version 4.43 and below	Intelligent unit firmware version 4.44	Instructions (PDF)	DOWNLOAD
U220-i	U220-i with 4 USB ports	Intelligent unit firmware version 4.43 and below	Intelligent unit firmware version 4.44	Instructions (PDF)	DOWNLOAD
U220-i	U220-i with a VGA port	Intelligent unit firmware version 4.43 and below	Intelligent unit firmware version 4.44	Instructions (PDF)	DOWNLOAD
U325	C31C213A8791 (with UB-E04)	1.04 and below	1.05	Instructions (PDF)	DOWNLOAD
U675	C31C283A8551 (with UB-E04) C31C283A8561 (with UB-E04) C31C283A8571 (with UB-E04)	1.04 and below	1.05	Instructions (PDF)	DOWNLOAD
UB-E04 Ethernet Interface	C32C881008 If you installed an UB-E04 Ethernet Interface in your product, it is affected and you will need to install the latest firmware version. For more information on your model and installed interface, please contact your reseller.	1.04 and below	1.05	Instructions (PDF)	DOWNLOAD
UB-E04 Ethernet Interface (mPOS)	C32C824A8811 If you installed a UB-E04 Ethernet Interface in your product, it is affected and you will need to install the latest firmware version. For more information on your model and installed interface, please contact your reseller.	1.04R06-mPOS and below	1.05r07	Instructions (PDF)	DOWNLOAD
UB-R04 Wireless Interface*	C32C824617 If you installed a UB-R04 Wireless Interface in your product, it is affected and you will need to install the latest firmware version. For more information on your model and installed interface, please contact your reseller.	1.10 and below	1.12	Instructions (PDF)	DOWNLOAD

*This product bundles Dell BSAFE™ software developed by Dell Inc. in the United States. Copyright© 2021 Dell Inc. All rights reserved. BSAFE is a trademark or registered trademark of Dell Inc. in the United States and other countries.

By downloading files from this page, you are agreeing to abide by the terms and conditions of Epson's Software License Agreement.