CVE-2026-39047

EPSON · L14150 FL27PB

A buffer overflow vulnerability in the EPSON L14150 FL27PB printer allows remote unauthenticated attackers to execute arbitrary code via the RAW Printing Service (JetDirect) on TCP port 9100.

Executive summary

The EPSON L14150 FL27PB printer is vulnerable to remote code execution via the JetDirect printing service, posing a severe risk to network-connected devices.

Vulnerability

The vulnerability is a buffer overflow in the RAW Printing Service (JetDirect), which listens on TCP port 9100. An unauthenticated remote attacker can exploit this to achieve arbitrary code execution on the printer hardware.

Business impact

A CVSS score of 7.5 (High) reflects the critical nature of remote code execution on network-attached hardware. Successful exploitation could allow an attacker to gain persistent access to the printer, potentially using it as a pivot point to launch further attacks against the internal network or steal sensitive printed data.

Remediation

Immediate Action: Update the printer firmware to the latest version provided by EPSON to remediate the buffer overflow.

Proactive Monitoring: Monitor network traffic directed at TCP port 9100 for anomalous payloads or high volumes of unexpected traffic.

Compensating Controls: If a firmware update is not immediately possible, restrict access to the printer's TCP port 9100 to known, trusted IP addresses using a hardware firewall or VLAN segmentation.

Exploitation status

Public Exploit Available: false

Analyst recommendation

This vulnerability is particularly dangerous as it is remotely exploitable without authentication. Organizations should immediately isolate affected printers from public-facing or untrusted networks and apply firmware patches as the primary mitigation strategy.