AirbusCVELIST:CVE-2019-10881CVE-2019-10881 Default hidden Privileged Account Vulnerability in multiple XEROX devices
9.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
9.6 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
60.8%
Xerox AltaLink B8045/B8055/B8065/B8075/B8090, AltaLink C8030/C8035/C8045/C8055/C8070 with software releases before 103.xxx.030.32000 includes two accounts with weak hard-coded passwords which can be exploited and allow unauthorized access which cannot be disabled.
CNA Affected
[
{
"product": "AltaLink B8045/B8055/B8065/B8075/B8090",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "AltaLink C8030/C8035/C8045/C8055/C8070",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "WorkCentre 3655",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "WorkCentre 5845/5855/5865/5875/5890",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "WorkCentre 5945/5955",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "WorkCentre 6655",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "WorkCentre 7220/7225",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "WorkCentre 7830/7835/7845/7855",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "WorkCentre 7970",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "WorkCentre EC7836/EC7856",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "ColorQube 9301/9302/9303",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "ColorQube 8700/8900",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "WorkCentre 6400",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "Phaser 6700",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "Phaser 7800",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "WorkCentre 5735/5740/5745/5755/5765/5775/5790",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "WorkCentre 7525/7530/7535/7545/7556",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
},
{
"product": "WorkCentre 7755/7765/7775",
"vendor": "XEROX",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
]References
Related
9.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
9.6 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
60.8%