Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

altalink_c8035_firmware vulnerabilities and exploits

(subscribe to this query)
8.8
CVSSv3
CVE-2019-19832
Xerox AltaLink C8035 printers allow CSRF. A request to add users is made in the Device User Database form field to the xerox.set URI. (The frmUserName value must have a unique name.)
Xerox Altalink C8035 Firmware -
4.9
CVSSv3
CVE-2019-18628
Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases prior to 101.00x.099.28200 allow a user with administrative privileges to turn off data encryption on the device, thus leaving it open to potential cryptog...
Xerox Altalink B8045 FirmwareXerox Altalink B8055 FirmwareXerox Altalink B8065 FirmwareXerox Altalink B8075 FirmwareXerox Altalink B8090 FirmwareXerox Altalink C8030 FirmwareXerox Altalink C8035 FirmwareXerox Altalink C8045 FirmwareXerox Altalink C8055 FirmwareXerox Altalink C8070 Firmware
8.1
CVSSv3
CVE-2019-18629
Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases prior to 101.00x.099.28200 allow an malicious user to execute an unwanted binary during a exploited clone install. This requires creating a clone file and ...
Xerox Altalink B8045 FirmwareXerox Altalink B8055 FirmwareXerox Altalink B8065 FirmwareXerox Altalink B8075 FirmwareXerox Altalink B8090 FirmwareXerox Altalink C8030 FirmwareXerox Altalink C8035 FirmwareXerox Altalink C8045 FirmwareXerox Altalink C8055 FirmwareXerox Altalink C8070 Firmware
9.8
CVSSv3
CVE-2018-17172
The web application on Xerox AltaLink B80xx prior to 100.008.028.05200, C8030/C8035 prior to 100.001.028.05200, C8045/C8055 prior to 100.002.028.05200, and C8070 prior to 100.003.028.05200 allows unauthenticated command injection.
Xerox Altalink C8030 FirmwareXerox Altalink C8035 FirmwareXerox Altalink C8045 FirmwareXerox Altalink C8055 FirmwareXerox Altalink C8070 FirmwareXerox Altalink B8045 FirmwareXerox Altalink B8055 FirmwareXerox Altalink B8065 FirmwareXerox Altalink B8075 FirmwareXerox Altalink B8090 Firmware
7.5
CVSSv3
CVE-2019-18630
On Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases prior to 101.00x.099.28200, portions of the drive containing executable code were not encrypted thus leaving it open to potential cryptographic informat...
Xerox Altalink B8045 FirmwareXerox Altalink B8055 FirmwareXerox Altalink B8065 FirmwareXerox Altalink B8075 FirmwareXerox Altalink B8090 FirmwareXerox Altalink C8030 FirmwareXerox Altalink C8035 FirmwareXerox Altalink C8045 FirmwareXerox Altalink C8055 FirmwareXerox Altalink C8070 Firmware
9.8
CVSSv3
CVE-2021-28668
Xerox AltaLink B80xx prior to 103.008.020.23120, C8030/C8035 prior to 103.001.020.23120, C8045/C8055 prior to 103.002.020.23120 and C8070 prior to 103.003.020.23120 has several SQL injection vulnerabilities.
Xerox Altalink B8045 FirmwareXerox Altalink B8055 FirmwareXerox Altalink B8065 FirmwareXerox Altalink B8075 FirmwareXerox Altalink B8090 FirmwareXerox Altalink C8030 FirmwareXerox Altalink C8035 FirmwareXerox Altalink C8045 FirmwareXerox Altalink C8055 FirmwareXerox Altalink C8070 Firmware
7.5
CVSSv3
CVE-2021-28669
Xerox AltaLink B80xx prior to 103.008.020.23120, C8030/C8035 prior to 103.001.020.23120, C8045/C8055 prior to 103.002.020.23120 and C8070 prior to 103.003.020.23120 provide the ability to set configuration attributes without administrative rights.
Xerox Altalink B8045 FirmwareXerox Altalink B8055 FirmwareXerox Altalink B8065 FirmwareXerox Altalink B8075 FirmwareXerox Altalink B8090 FirmwareXerox Altalink C8030 FirmwareXerox Altalink C8035 FirmwareXerox Altalink C8045 FirmwareXerox Altalink C8055 FirmwareXerox Altalink C8070 Firmware
9.1
CVSSv3
CVE-2021-28670
Xerox AltaLink B8045/B8090 prior to 103.008.030.32000, C8030/C8035 prior to 103.001.030.32000, C8045/C8055 prior to 103.002.030.32000 and C8070 prior to 103.003.030.32000 allow unauthorized users, by leveraging the Scan To Mailbox feature, to delete arbitrary files from the disk.
Xerox Altalink B8045 FirmwareXerox Altalink B8055 FirmwareXerox Altalink B8065 FirmwareXerox Altalink B8075 FirmwareXerox Altalink B8090 FirmwareXerox Altalink C8030 FirmwareXerox Altalink C8035 FirmwareXerox Altalink C8045 FirmwareXerox Altalink C8055 FirmwareXerox Altalink C8070 Firmware
9.8
CVSSv3
CVE-2019-10881
Xerox AltaLink B8045/B8055/B8065/B8075/B8090, AltaLink C8030/C8035/C8045/C8055/C8070 with software releases prior to 103.xxx.030.32000 includes two accounts with weak hard-coded passwords which can be exploited and allow unauthorized access which cannot be disabled.
Xerox Altalink B8045 FirmwareXerox Altalink B8055 FirmwareXerox Altalink B8065 FirmwareXerox Altalink B8075 FirmwareXerox Altalink B8090 FirmwareXerox Altalink C8030 FirmwareXerox Altalink C8035 FirmwareXerox Altalink C8045 FirmwareXerox Altalink C8055 FirmwareXerox Altalink C8070 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook