Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xerox workcentre vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2006-0827
Cross-site scripting vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote malicious users to inject arbitrary web script or HTML via unknown attack vectors.
Xerox Workcentre 238
Xerox Workcentre 245
Xerox Workcentre 275
Xerox Workcentre 232
Xerox Workcentre 255
Xerox Workcentre 265
7.8
CVSSv2
CVE-2006-6430
Web services in Xerox WorkCentre and WorkCentre Pro prior to 12.060.17.000, 13.x prior to 13.060.17.000, and 14.x prior to 14.060.17.000 do not require HTTPS, which allows remote malicious users to obtain sensitive information by sniffing the unencrypted HTTP traffic.
Xerox Workcentre 245
Xerox Workcentre 255
Xerox Workcentre 238
Xerox Workcentre 232
Xerox Workcentre 275
Xerox Workcentre 265
6.8
CVSSv2
CVE-2006-6436
Cross-site scripting (XSS) vulnerability in the Network controller in Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 allows remote malicious users to inject arbitrary web script or HTML via HTTP TRACE messa...
Xerox Workcentre 265
Xerox Workcentre 275
Xerox Workcentre 245
Xerox Workcentre 255
Xerox Workcentre 232
Xerox Workcentre 238
4.9
CVSSv2
CVE-2006-6438
Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 leaves sensitive user data in http.log after an Immediate Image Overwrite (IIO), which allows local users to obtain the data by reading the http.log file.
Xerox Workcentre 245
Xerox Workcentre 255
Xerox Workcentre 265
Xerox Workcentre 238
Xerox Workcentre 275
Xerox Workcentre 232
7.8
CVSSv2
CVE-2006-6439
Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 allows remote malicious users to download the audit log and obtain potentially sensitive information via unspecified vectors.
Xerox Workcentre 265
Xerox Workcentre 275
Xerox Workcentre 245
Xerox Workcentre 255
Xerox Workcentre 232
Xerox Workcentre 238
4.6
CVSSv2
CVE-2006-6441
Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 allows local users to bypass security controls and boot Alchemy via certain alternate boot media, as demonstrated by a USB thumb drive.
Xerox Workcentre 238
Xerox Workcentre 245
Xerox Workcentre 255
Xerox Workcentre 232
Xerox Workcentre 265
Xerox Workcentre 275
4.3
CVSSv2
CVE-2008-6436
Cross-site scripting (XSS) vulnerability in the Web Server in Xerox WorkCentre 7132, 7228, 7235, and 7245 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Xerox Workcentre 7132
Xerox Workcentre 7228
Xerox Workcentre 7235
Xerox Workcentre 7245
7.5
CVSSv2
CVE-2005-2200
Multiple unknown vulnerabilities in the MicroServer Web Server for Xerox WorkCentre Pro Color 2128, 2636, and 3545, version 0.001.04.044 up to and including 0.001.04.504, allow malicious users to bypass authentication.
Xerox Workcentre 2128 0.001.04.044
Xerox Workcentre 2128 0.001.04.504
Xerox Workcentre 2636 0.001.04.504
Xerox Workcentre 3545 0.001.04.504
Xerox Workcentre 2636 0.001.04.044
Xerox Workcentre 3545 0.001.04.044
6.4
CVSSv2
CVE-2005-2201
Unknown vulnerability in the MicroServer Web Server for Xerox WorkCentre Pro Color 2128, 2636, and 3545, version 0.001.04.044 up to and including 0.001.04.504, allow malicious users to cause a denial of service or access files via crafted HTTP requests.
Xerox Workcentre 2128 0.001.04.044
Xerox Workcentre 2128 0.001.04.504
Xerox Workcentre 2636 0.001.04.044
Xerox Workcentre 2636 0.001.04.504
Xerox Workcentre 3545 0.001.04.504
Xerox Workcentre 3545 0.001.04.044
4.3
CVSSv2
CVE-2005-2202
Cross-site scripting (XSS) vulnerability in the MicroServer Web Server for Xerox WorkCentre Pro Color 2128, 2636, and 3545, version 0.001.04.044 up to and including 0.001.04.504, allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Xerox Workcentre 2128 0.001.04.044
Xerox Workcentre 2128 0.001.04.504
Xerox Workcentre 2636 0.001.04.044
Xerox Workcentre 2636 0.001.04.504
Xerox Workcentre 3545 0.001.04.504
Xerox Workcentre 3545 0.001.04.044
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »