Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xerox vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6473
Multiple unspecified vulnerabilities in Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 have unknown impact and attack vectors, related to (1) an Immediate Image Overwrite (IIO) error message at the Local Us...
Xerox Workcentre
NA
CVE-2006-6467
Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 do not properly restrict access to SMB file resources, which allows remote malicious users to gain unspecified file or directory access via vectors related to ...
Xerox Workcentre
7.5
CVSSv3
CVE-2022-23968
Xerox VersaLink devices on specific versions of firmware prior to 2022-01-26 allow remote malicious users to brick the device via a crafted TIFF file in an unauthenticated HTTP POST request. There is a permanent denial of service because image parsing causes a reboot, but image p...
Xerox Versalink Firmware
9.8
CVSSv3
CVE-2019-13165
Some Xerox printers (such as the Phaser 3320 V53.006.16.000) were affected by a buffer overflow vulnerability in the request parser of the IPP service. This would allow an unauthenticated malicious user to cause a Denial of Service (DoS) and potentially execute arbitrary code on ...
Xerox Phaser 3320 Firmware V53.006.16.000
7.5
CVSSv3
CVE-2019-13166
Some Xerox printers (such as the Phaser 3320 V53.006.16.000) did not implement account lockout. Local account credentials may be extracted from the device via brute force guessing attacks.
Xerox Phaser 3320 Firmware V53.006.16.000
6.1
CVSSv3
CVE-2019-13167
Multiple Stored XSS vulnerabilities were found in the Xerox Web Application, used by the Phaser 3320 V53.006.16.000 and other printers. Successful exploitation of this vulnerability can lead to session hijacking of the administrator in the web application or the execution of unwa...
Xerox Phaser 3320 Firmware V53.006.16.000
9.8
CVSSv3
CVE-2019-13168
Some Xerox printers (such as the Phaser 3320 V53.006.16.000) were affected by a buffer overflow vulnerability in the attributes parser of the IPP service. This would allow an unauthenticated malicious user to cause a Denial of Service (DoS) and potentially execute arbitrary code ...
Xerox Phaser 3320 Firmware V53.006.16.000
9.8
CVSSv3
CVE-2019-13169
Some Xerox printers (such as the Phaser 3320 V53.006.16.000) were affected by a buffer overflow vulnerability in the Content-Type HTTP Header of the web application that would allow an malicious user to execute arbitrary code on the device.
Xerox Phaser 3320 Firmware V53.006.16.000
6.5
CVSSv3
CVE-2019-13170
Some Xerox printers (such as the Phaser 3320 V53.006.16.000) did not implement any mechanism to avoid CSRF attacks. Successful exploitation of this vulnerability can lead to the takeover of a local account on the device.
Xerox Phaser 3320 Firmware V53.006.16.000
9.8
CVSSv3
CVE-2019-13172
Some Xerox printers (such as the Phaser 3320 V53.006.16.000) were affected by a buffer overflow vulnerability in the Authentication Cookie of the web application that would allow an malicious user to execute arbitrary code on the device.
Xerox Phaser 3320 Firmware V53.006.16.000
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »