SEIKO EPSON and FUJIFILM Corporation administrator password Vulnerability (CVE-2025-35970)

CVE number = CVE-2025-35970

On multiple products of SEIKO EPSON and FUJIFILM Corporation, the initial administrator password is easy to guess from the information available via SNMP.

If the administrator password is not changed from the initial one, a remote attacker with SNMP access can log in to the product with the administrator privilege.

Some printers, scanners, and network interface products use the serial number as the initial password. If a malicious third party uses some kind of tool on the same network to obtain the product’s serial number via SNMP, they could log in to the product using that password as the administrator password if the password has not been changed from the initial value.

This could allow a malicious third party to take over and operate the device.

It is recommended you change the default admin password.