A network-related vulnerability in the label printer "Tepra". patch available

Search

Close

News

King Jim Co., Ltd. has reported a network-related vulnerability in the label printer Tepra and has provided a fix update.

　Affected are Tepra "PRO SR5900P" version 1.080 and earlier, and "PRO SR-R7900P" version 1.030 and earlier. There is a problem with insufficient protection of authentication information (CWE-522), and there is a risk that the authentication information for connecting to the access point in infrastructure mode may be leaked from a third party who can access it via the network.

　The company is providing updates for each Tepra main unit. It can be dealt with by updating PRO SR5900P to version 1.090 and PRO SR-R7900P to version 1.040. When applied, it will be impossible to change settings or read registration information for connecting to a Wi-Fi access point via a network (access via USB is still possible).

Along with this, the dedicated utility has also been updated. The targets are the TEPRA Label Editor SPC10 (for Windows) and the SMA3 printer driver "TEPRA Driver" (for macOS), which are version 3.02 and version 1.20, respectively.