Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2006-6438
HistoryDec 10, 2006 - 11:28 a.m.

CVE-2006-6438

2006-12-1011:28:00
[email protected]
web.nvd.nist.gov
17
xerox
workcentre
data exposure
cve-2006-6438
security vulnerability
nvd

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 leaves sensitive user data in http.log after an Immediate Image Overwrite (IIO), which allows local users to obtain the data by reading the http.log file.

Affected configurations

NVD
Node
xeroxworkcentre_232
OR
xeroxworkcentre_232pro
OR
xeroxworkcentre_238
OR
xeroxworkcentre_238pro
OR
xeroxworkcentre_245
OR
xeroxworkcentre_245pro
OR
xeroxworkcentre_255
OR
xeroxworkcentre_255pro
OR
xeroxworkcentre_265
OR
xeroxworkcentre_265pro
OR
xeroxworkcentre_275
OR
xeroxworkcentre_275pro

Related

cvelist 1
nvd 1
cvelist
cvelist
CVE-2006-6438
2006-12-10 11:00:00
nvd
nvd
CVE-2006-6438
2006-12-10 11:28:00

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CVE-2006-6438
cvelist1nvd1