Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xerox vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2006-6472
The httpd.conf file in Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 configures port 443 to be always active, which has unknown impact and remote attack vectors.
Xerox Workcentre
5.8
CVSSv2
CVE-2006-6468
Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 do not check the Fully Qualified Domain Name (FQDN) during a "Validate Repository SSL Certificate" scan, which has unknown impact and attack vectors,...
Xerox Workcentre
4.3
CVSSv2
CVE-2018-15530
Cross-site scripting (XSS) in the web interface of the Xerox ColorQube 8580 allows remote persistent injection of custom HTML / JavaScript code.
Xerox Colorqube 8580 Firmware -
5
CVSSv2
CVE-2001-1134
Xerox DocuPrint N40 Printers allow remote malicious users to cause a denial of service via malformed data, such as that produced by the Code Red worm.
Xerox Docuprint N40
4.3
CVSSv2
CVE-2008-3121
Multiple cross-site scripting (XSS) vulnerabilities in Xerox CentreWare Web (CWW) prior to 4.6.46 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Xerox Centreware Web
7.5
CVSSv2
CVE-2009-3913
SQL injection vulnerability in summary.php in Xerox Fiery Webtools allows remote malicious users to execute arbitrary SQL commands via the select parameter.
Xerox Fiery Webtools
1 EDB exploit
4.3
CVSSv2
CVE-2019-13167
Multiple Stored XSS vulnerabilities were found in the Xerox Web Application, used by the Phaser 3320 V53.006.16.000 and other printers. Successful exploitation of this vulnerability can lead to session hijacking of the administrator in the web application or the execution of unwa...
Xerox Phaser 3320 Firmware V53.006.16.000
10
CVSSv2
CVE-2019-13168
Some Xerox printers (such as the Phaser 3320 V53.006.16.000) were affected by a buffer overflow vulnerability in the attributes parser of the IPP service. This would allow an unauthenticated malicious user to cause a Denial of Service (DoS) and potentially execute arbitrary code ...
Xerox Phaser 3320 Firmware V53.006.16.000
5
CVSSv2
CVE-2019-13166
Some Xerox printers (such as the Phaser 3320 V53.006.16.000) did not implement account lockout. Local account credentials may be extracted from the device via brute force guessing attacks.
Xerox Phaser 3320 Firmware V53.006.16.000
10
CVSSv2
CVE-2019-13169
Some Xerox printers (such as the Phaser 3320 V53.006.16.000) were affected by a buffer overflow vulnerability in the Content-Type HTTP Header of the web application that would allow an malicious user to execute arbitrary code on the device.
Xerox Phaser 3320 Firmware V53.006.16.000
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »