Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xerox vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-37354
Xerox Phaser 4622 v35.013.01.000 exists to contain a buffer overflow in the function sub_3226AC via the TIMEZONE variable. This vulnerability allows malicious users to cause a Denial of Service (DoS) via crafted overflow data.
Xerox Phaser 4622 Firmware 35.013.01.000
4.3
CVSSv2
CVE-2008-3121
Multiple cross-site scripting (XSS) vulnerabilities in Xerox CentreWare Web (CWW) prior to 4.6.46 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Xerox Centreware Web
10
CVSSv2
CVE-2019-13171
Some Xerox printers (such as the Phaser 3320 V53.006.16.000) were affected by one or more stack-based buffer overflow vulnerabilities in the Google Cloud Print implementation that would allow an unauthenticated malicious user to execute arbitrary code on the device. This was caus...
Xerox Phaser 3320 Firmware V53.006.16.000
10
CVSSv2
CVE-2019-13168
Some Xerox printers (such as the Phaser 3320 V53.006.16.000) were affected by a buffer overflow vulnerability in the attributes parser of the IPP service. This would allow an unauthenticated malicious user to cause a Denial of Service (DoS) and potentially execute arbitrary code ...
Xerox Phaser 3320 Firmware V53.006.16.000
4.3
CVSSv2
CVE-2019-13170
Some Xerox printers (such as the Phaser 3320 V53.006.16.000) did not implement any mechanism to avoid CSRF attacks. Successful exploitation of this vulnerability can lead to the takeover of a local account on the device.
Xerox Phaser 3320 Firmware V53.006.16.000
5
CVSSv2
CVE-1999-1343
HTTP server for Xerox DocuColor 4 LP allows remote malicious users to cause a denial of service (hang) via a long URL that contains a large number of . characters.
Xerox Docucolor 4lp
5
CVSSv2
CVE-2001-1134
Xerox DocuPrint N40 Printers allow remote malicious users to cause a denial of service via malformed data, such as that produced by the Code Red worm.
Xerox Docuprint N40
6.5
CVSSv2
CVE-2008-3122
Multiple SQL injection vulnerabilities in Xerox CentreWare Web (CWW) prior to 4.6.46 allow remote authenticated users to execute arbitrary SQL commands via the unspecified vectors.
Xerox Centreware Web
7.5
CVSSv2
CVE-2009-3913
SQL injection vulnerability in summary.php in Xerox Fiery Webtools allows remote malicious users to execute arbitrary SQL commands via the select parameter.
Xerox Fiery Webtools
1 EDB exploit
3.5
CVSSv2
CVE-2022-23321
A persistent cross-site scripting (XSS) vulnerability exists on two input fields within the administrative panel when editing users in the XMPie UStore application on version 12.3.7244.0.
Xerox Xmpie Ustore 12.3.7244.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »