Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xerox vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-2201
Unknown vulnerability in the MicroServer Web Server for Xerox WorkCentre Pro Color 2128, 2636, and 3545, version 0.001.04.044 up to and including 0.001.04.504, allow malicious users to cause a denial of service or access files via crafted HTTP requests.
Xerox Workcentre 2128 0.001.04.044
Xerox Workcentre 2128 0.001.04.504
Xerox Workcentre 2636 0.001.04.044
Xerox Workcentre 2636 0.001.04.504
Xerox Workcentre 3545 0.001.04.504
Xerox Workcentre 3545 0.001.04.044
NA
CVE-2005-2202
Cross-site scripting (XSS) vulnerability in the MicroServer Web Server for Xerox WorkCentre Pro Color 2128, 2636, and 3545, version 0.001.04.044 up to and including 0.001.04.504, allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Xerox Workcentre 2128 0.001.04.044
Xerox Workcentre 2128 0.001.04.504
Xerox Workcentre 2636 0.001.04.044
Xerox Workcentre 2636 0.001.04.504
Xerox Workcentre 3545 0.001.04.504
Xerox Workcentre 3545 0.001.04.044
NA
CVE-2006-6437
ops3-dmn in Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 allows malicious users to cause a denial of service (application crash and core dump) via a certain PS file.
Xerox Workcentre 12.060.17.000
Xerox Workcentre 13.060.17.000
Xerox Workcentre 14.060.17.000
NA
CVE-2008-2824
Unspecified vulnerability in the Extensible Interface Platform in Web Services in Xerox WorkCentre 7655, 7665, and 7675 allows remote malicious users to make configuration changes via unknown vectors.
Xerox Workcentre 7655
Xerox Workcentre 7665
Xerox Workcentre 7675
NA
CVE-2006-6428
Xerox WorkCentre and WorkCentre Pro prior to 12.060.17.000, 13.x prior to 13.060.17.000, and 14.x prior to 14.060.17.000 allow remote malicious users to gain access via unspecified vectors related to "browser permissions."
Xerox Workcentre 13.060.17.000
Xerox Workcentre 14.060.17.000
Xerox Workcentre 12.060.17.000
NA
CVE-2006-6435
The SNMP implementation in Xerox WorkCentre and WorkCentre Pro prior to 12.050.03.000, 13.x prior to 13.050.03.000, and 14.x prior to 14.050.03.000 does not generate authentication failure traps, which allows remote malicious users to more easily gain system access and obtain sen...
Xerox Workcentre 12.060.17.000
Xerox Workcentre 13.060.17.000
Xerox Workcentre 14.060.17.000
NA
CVE-2006-6427
The Web User Interface in Xerox WorkCentre and WorkCentre Pro prior to 12.060.17.000, 13.x prior to 13.060.17.000, and 14.x prior to 14.060.17.000 allows remote malicious users to execute arbitrary commands via unspecified vectors involving "command injection" in (1) th...
Xerox Workcentre 12.060.17.000
Xerox Workcentre 13.060.17.000
Xerox Workcentre 14.060.17.000
NA
CVE-2006-6431
Unspecified vulnerability in Xerox WorkCentre and WorkCentre Pro prior to 12.060.17.000, 13.x prior to 13.060.17.000, and 14.x prior to 14.060.17.000 allows malicious users to modify signatures of e-mail messages via unspecified vectors.
Xerox Workcentre 12.060.17.000
Xerox Workcentre 13.060.17.000
Xerox Workcentre 14.060.17.000
NA
CVE-2006-6432
Unspecified vulnerability in the Scan-to-mailbox feature in Xerox WorkCentre and WorkCentre Pro prior to 12.060.17.000, 13.x prior to 13.060.17.000, and 14.x prior to 14.060.17.000 allows remote malicious users to download certain files via unspecified vectors.
Xerox Workcentre 13.060.17.000
Xerox Workcentre 12.060.17.000
Xerox Workcentre 14.060.17.000
NA
CVE-2006-6433
Xerox WorkCentre and WorkCentre Pro prior to 12.060.17.000, 13.x prior to 13.060.17.000, and 14.x prior to 14.060.17.000 does not record accurate timestamps, which makes it easier for remote malicious users to avoid detection when an audit tries to rely on these timestamps.
Xerox Workcentre 14.060.17.000
Xerox Workcentre 12.060.17.000
Xerox Workcentre 13.060.17.000
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »