Lucene search
K

59 matches found

OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-38253 Malicious code in versalink-rmy85000-device (npm)

The package versalink-rmy85000-device was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-38248 Malicious code in versalink-cozir5-device (npm)

The package versalink-cozir5-device was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.4 views

MAL-2025-38246 Malicious code in versalink (npm)

The package versalink was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-38255 Malicious code in versalink-tsl2561-device (npm)

The package versalink-tsl2561-device was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-38254 Malicious code in versalink-si1145-device (npm)

The package versalink-si1145-device was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 12:12 a.m.6 views

CVE-2005-4276

Westell Versalink 327W allows remote attackers to cause a denial of service device crash via an IP packet with the same source and destination IPs and ports, and with the SYN flag set aka LanD. NOTE: the provenance of this issue is unknown; the details are obtained solely from third party...

7.8CVSS7AI score0.02496EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/03/13 12:0 a.m.5 views

The vulnerability of microprogrammed multifunctional devices (MFUs) such as Versalink, Phaser, and WorkCentre, related to deficiencies in authentication procedures, allows attackers to disclose protected information.

The vulnerability of microprogrammed multifunctional devices such as Versalink, Phaser, and WorkCentre is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose protected information...

8.7CVSS7.5AI score0.00923EPSS
Exploits0References2Affected Software30
BDU FSTEC
BDU FSTEC
added 2025/03/13 12:0 a.m.8 views

The vulnerability of the implementations of SMB and FTP protocols for microprogrammed printer software from Versalink and WorkCentre allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of SMB and FTP protocol implementations of Versalink and WorkCentre software lies in the lack of access control for the address book during scanning. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

8CVSS7.6AI score0.00593EPSS
Exploits0References3Affected Software30
HackRead
HackRead
added 2025/02/19 11:17 a.m.8 views

Xerox Versalink Printers Vulnerabilities Could Let Hackers Steal Credentials

Xerox Versalink printers are vulnerable to pass-back attacks. Rapid7 discovers LDAP & SMB flaws CVE-2024-12510 & CVE-2024-12511. Update…...

7.6CVSS7.1AI score0.00923EPSS
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2025/02/14 2:0 p.m.27 views

Xerox Versalink C7025 Multifunction Printer: Pass-Back Attack Vulnerabilities (FIXED)

During security testing, Rapid7 discovered that Xerox Versalink C7025 Multifunction printers MFPs were vulnerable to pass-back attacks. The affected products identified were: Xerox Versalink MFPs Firmware Version: 57.69.91 and earlier This issue has been assigned the following CVEs: CVE-2024-1251...

7.6CVSS8.2AI score0.00923EPSS
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2025/02/14 2:0 p.m.5 views

Xerox Versalink C7025 Multifunction Printer: Pass-Back Attack Vulnerabilities (FIXED)

During security testing, Rapid7 discovered that Xerox Versalink C7025 Multifunction printers MFPs were vulnerable to pass-back attacks. The affected products identified were: Xerox Versalink MFPs Firmware Version: 57.69.91 and earlier This issue has been assigned the following CVEs: CVE-2024-1251...

7.6CVSS7.4AI score0.00923EPSS
Exploits0
CNNVD
CNNVD
added 2025/02/03 12:0 a.m.4 views

Xerox Versalink 安全漏洞

Xerox VersaLink is a line of commercial printers from Xerox Corporation USA. A security vulnerability exists in Xerox Versalink that originates from access via the address book and can modify SMB/FTP settings, redirect scans and potentially capture credentials...

7.6CVSS7.9AI score0.00593EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/03 12:0 a.m.5 views

Xerox Versalink 安全漏洞

Xerox VersaLink is a line of commercial printers from Xerox USA. A security vulnerability exists in Xerox Versalink that stems from the fact that authentication may be redirected to another server, exposing credentials...

6.7CVSS8.1AI score0.00923EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/10/30 12:0 a.m.5 views

The vulnerability of microprogrammed multifunctional devices (MFUs) such as Xerox Altalink, Versalink, and WorkCentre lies in the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows a perpetrator to execute arbitrary code.

The vulnerability of microprogrammed multifunctional devices MFUs such as Xerox Altalink, Versalink, and WorkCentre lies in the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to execute...

9CVSS7.5AI score0.01214EPSS
Exploits2References3Affected Software15
NVD
NVD
added 2024/10/17 2:15 p.m.33 views

CVE-2024-6333

Authenticated Remote Code Execution in Altalink, Versalink & WorkCentre Products...

7.2CVSS0.01214EPSS
Exploits2References2
Vulnrichment
Vulnrichment
added 2024/10/17 1:51 p.m.13 views

CVE-2024-6333 Authenticated Remote Code Execution in Altalink, Versalink & WorkCentre Products

Authenticated Remote Code Execution in Altalink, Versalink & WorkCentre Products...

7.2CVSS7.6AI score0.01214EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/10/17 1:51 p.m.43 views

CVE-2024-6333 Authenticated Remote Code Execution in Altalink, Versalink & WorkCentre Products

Authenticated Remote Code Execution in Altalink, Versalink & WorkCentre Products...

7.2CVSS0.01214EPSS
Exploits2References1
CVE
CVE
added 2024/10/17 1:51 p.m.117 views

CVE-2024-6333

CVE-2024-6333 affects Xerox AltaLink, VersaLink, and WorkCentre printers. The vulnerability is an authenticated remote code execution in the device’s software, caused by inadequate input handling that allows injection of specially crafted commands to the OS. The result is arbitrary code execution...

7.2CVSS7.2AI score0.01214EPSS
Exploits2References2
CNNVD
CNNVD
added 2024/10/17 12:0 a.m.4 views

Xerox多款产品 安全漏洞

Xerox AltaLink and others are products of Xerox Corporation, U.S.A. Xerox AltaLink is a hardware device.Xerox VersaLink is a line of commercial printers.Xerox WorkCentre is a line of all-in-one printers. A security vulnerability exists in various Xerox products, which stems from the presence of a...

7.2CVSS7.6AI score0.01214EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2023/12/14 12:0 a.m.11 views

PT-2023-9607 · Xerox · Xerox Altalink +2

Name of the Vulnerable Software and Affected Versions: Xerox Altalink, Versalink, and WorkCentre products affected versions not specified Description: The issue is related to a lack of measures to neutralize special elements used in an operating system command, allowing an attacker to execute...

9CVSS7.8AI score0.01214EPSS
Exploits2References23
Rows per page
Query Builder