Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xerox vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3571
The Xerox Phaser 8400 allows remote malicious users to cause a denial of service (reboot) via an empty UDP packet to port 1900.
Xerox Phaser 8400
1 EDB exploit
NA
CVE-2008-3121
Multiple cross-site scripting (XSS) vulnerabilities in Xerox CentreWare Web (CWW) prior to 4.6.46 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Xerox Centreware Web
NA
CVE-2008-3122
Multiple SQL injection vulnerabilities in Xerox CentreWare Web (CWW) prior to 4.6.46 allow remote authenticated users to execute arbitrary SQL commands via the unspecified vectors.
Xerox Centreware Web
NA
CVE-2009-3913
SQL injection vulnerability in summary.php in Xerox Fiery Webtools allows remote malicious users to execute arbitrary SQL commands via the select parameter.
Xerox Fiery Webtools
1 EDB exploit
NA
CVE-2001-1134
Xerox DocuPrint N40 Printers allow remote malicious users to cause a denial of service via malformed data, such as that produced by the Code Red worm.
Xerox Docuprint N40
7.5
CVSSv3
CVE-2022-26572
Xerox ColorQube 8580 exists to contain an access control issue which allows malicious users to print, view the status, and obtain sensitive information.
Xerox Colorqube 8580 Firmware -
7.5
CVSSv3
CVE-2022-23320
XMPie uStore 12.3.7244.0 allows for administrators to generate reports based on raw SQL queries. Since the application ships with default administrative credentials, an attacker may authenticate into the application and exfiltrate sensitive information from the database.
Xerox Xmpie Ustore 12.3.7244.0
4.8
CVSSv3
CVE-2022-23321
A persistent cross-site scripting (XSS) vulnerability exists on two input fields within the administrative panel when editing users in the XMPie UStore application on version 12.3.7244.0.
Xerox Xmpie Ustore 12.3.7244.0
8.8
CVSSv3
CVE-2019-19832
Xerox AltaLink C8035 printers allow CSRF. A request to add users is made in the Device User Database form field to the xerox.set URI. (The frmUserName value must have a unique name.)
Xerox Altalink C8035 Firmware -
6.1
CVSSv3
CVE-2018-15530
Cross-site scripting (XSS) in the web interface of the Xerox ColorQube 8580 allows remote persistent injection of custom HTML / JavaScript code.
Xerox Colorqube 8580 Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »