Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xerox vulnerabilities and exploits
(subscribe to this query)
694
VMScore
CVE-2022-23968
Xerox VersaLink devices on specific versions of firmware prior to 2022-01-26 allow remote malicious users to brick the device via a crafted TIFF file in an unauthenticated HTTP POST request. There is a permanent denial of service because image parsing causes a reboot, but image p...
Xerox Versalink Firmware
578
VMScore
CVE-2008-3122
Multiple SQL injection vulnerabilities in Xerox CentreWare Web (CWW) prior to 4.6.46 allow remote authenticated users to execute arbitrary SQL commands via the unspecified vectors.
Xerox Centreware Web
445
VMScore
CVE-1999-1343
HTTP server for Xerox DocuColor 4 LP allows remote malicious users to cause a denial of service (hang) via a long URL that contains a large number of . characters.
Xerox Docucolor 4lp
785
VMScore
CVE-2008-3571
The Xerox Phaser 8400 allows remote malicious users to cause a denial of service (reboot) via an empty UDP packet to port 1900.
Xerox Phaser 8400
1 EDB exploit
383
VMScore
CVE-2008-3121
Multiple cross-site scripting (XSS) vulnerabilities in Xerox CentreWare Web (CWW) prior to 4.6.46 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Xerox Centreware Web
605
VMScore
CVE-2019-19832
Xerox AltaLink C8035 printers allow CSRF. A request to add users is made in the Device User Database form field to the xerox.set URI. (The frmUserName value must have a unique name.)
Xerox Altalink C8035 Firmware -
446
VMScore
CVE-2022-23320
XMPie uStore 12.3.7244.0 allows for administrators to generate reports based on raw SQL queries. Since the application ships with default administrative credentials, an attacker may authenticate into the application and exfiltrate sensitive information from the database.
Xerox Xmpie Ustore 12.3.7244.0
312
VMScore
CVE-2022-23321
A persistent cross-site scripting (XSS) vulnerability exists on two input fields within the administrative panel when editing users in the XMPie UStore application on version 12.3.7244.0.
Xerox Xmpie Ustore 12.3.7244.0
445
VMScore
CVE-2022-26572
Xerox ColorQube 8580 exists to contain an access control issue which allows malicious users to print, view the status, and obtain sensitive information.
Xerox Colorqube 8580 Firmware -
383
VMScore
CVE-2018-15530
Cross-site scripting (XSS) in the web interface of the Xerox ColorQube 8580 allows remote persistent injection of custom HTML / JavaScript code.
Xerox Colorqube 8580 Firmware -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »