Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
workcentre 265 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-5290
The ESS/ Network Controller and MicroServer Web Server components of Xerox WorkCentre and WorkCentre Pro 232, 238, 245, 255, 265 and 275 allow remote malicious users to bypass authentication and execute arbitrary code via "WebUI command injection on TCP/IP hostname."
Xerox Workcentre 238
Xerox Workcentre 245
Xerox Workcentre 232
Xerox Workcentre 275
Xerox Workcentre 255
Xerox Workcentre 265
7.8
CVSSv2
CVE-2006-6430
Web services in Xerox WorkCentre and WorkCentre Pro prior to 12.060.17.000, 13.x prior to 13.060.17.000, and 14.x prior to 14.060.17.000 do not require HTTPS, which allows remote malicious users to obtain sensitive information by sniffing the unencrypted HTTP traffic.
Xerox Workcentre 245
Xerox Workcentre 255
Xerox Workcentre 238
Xerox Workcentre 232
Xerox Workcentre 275
Xerox Workcentre 265
7.5
CVSSv2
CVE-2006-6434
Unspecified vulnerability in the Web User Interface in Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 allows remote malicious users to bypass authentication controls via unknown vectors.
Xerox Workcentre 275
Xerox Workcentre 232
Xerox Workcentre 265
Xerox Workcentre 238
Xerox Workcentre 245
Xerox Workcentre 255
6.8
CVSSv2
CVE-2006-6436
Cross-site scripting (XSS) vulnerability in the Network controller in Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 allows remote malicious users to inject arbitrary web script or HTML via HTTP TRACE messa...
Xerox Workcentre 265
Xerox Workcentre 275
Xerox Workcentre 245
Xerox Workcentre 255
Xerox Workcentre 232
Xerox Workcentre 238
4.9
CVSSv2
CVE-2006-6438
Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 leaves sensitive user data in http.log after an Immediate Image Overwrite (IIO), which allows local users to obtain the data by reading the http.log file.
Xerox Workcentre 245
Xerox Workcentre 255
Xerox Workcentre 265
Xerox Workcentre 238
Xerox Workcentre 275
Xerox Workcentre 232
7.8
CVSSv2
CVE-2006-6439
Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 allows remote malicious users to download the audit log and obtain potentially sensitive information via unspecified vectors.
Xerox Workcentre 265
Xerox Workcentre 275
Xerox Workcentre 245
Xerox Workcentre 255
Xerox Workcentre 232
Xerox Workcentre 238
7.5
CVSSv2
CVE-2006-6440
Multiple unspecified vulnerabilities in Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 allow remote malicious users to have an unspecified impact via unspecified vectors relating to "HTTP Security issu...
Xerox Workcentre 245
Xerox Workcentre 255
Xerox Workcentre 238
Xerox Workcentre 232
Xerox Workcentre 265
Xerox Workcentre 275
4.6
CVSSv2
CVE-2006-6441
Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 allows local users to bypass security controls and boot Alchemy via certain alternate boot media, as demonstrated by a USB thumb drive.
Xerox Workcentre 238
Xerox Workcentre 245
Xerox Workcentre 255
Xerox Workcentre 232
Xerox Workcentre 265
Xerox Workcentre 275
5
CVSSv2
CVE-2006-0826
Unspecified vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote malicious users to cause a denial of service via a crafted Postscript request.
Xerox Workcentre 232
Xerox Workcentre 265
Xerox Workcentre 238
Xerox Workcentre 245
Xerox Workcentre 255
Xerox Workcentre 275
5
CVSSv2
CVE-2006-0827
Cross-site scripting vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote malicious users to inject arbitrary web script or HTML via unknown attack vectors.
Xerox Workcentre 238
Xerox Workcentre 245
Xerox Workcentre 275
Xerox Workcentre 232
Xerox Workcentre 255
Xerox Workcentre 265
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »