5.8 Medium
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
48.5%
Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 do not properly restrict access to SMB file resources, which allows remote attackers to gain unspecified file or directory access via vectors related to (1) visibility of the SMB “Homes” share and (2) SMB file system browsing.
CPE | Name | Operator | Version |
---|---|---|---|
xerox:workcentre | xerox workcentre | le | 13.050.02.000 |
xerox:workcentre | xerox workcentre | le | 14.050.02.000 |