Lucene search
K

50 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:26 a.m.11 views

CVE-2021-28668

Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 has several SQL injection vulnerabilities...

9.8CVSS8.1AI score0.00979EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-2603

Malware in sbrugna...

9.8CVSS9.4AI score0.00987EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-15331

Malware in sbrugna...

9.8CVSS9.3AI score0.00979EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-8947

Malware in sbrugna...

9.8CVSS9.5AI score0.01969EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 8:55 p.m.4 views

CVE-2021-28669

Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 provide the ability to set configuration attributes without administrative rights...

7.5CVSS7.1AI score0.00791EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:56 a.m.6 views

CVE-2019-19832

Xerox AltaLink C8035 printers allow CSRF. A request to add users is made in the Device User Database form field to the xerox.set URI. The frmUserName value must have a unique name...

8.8CVSS6.8AI score0.00719EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/02/05 5:33 p.m.10 views

CVE-2019-10881

Xerox AltaLink B8045/B8055/B8065/B8075/B8090, AltaLink C8030/C8035/C8045/C8055/C8070 with software releases before 103.xxx.030.32000 includes two accounts with weak hard-coded passwords which can be exploited and allow unauthorized access which cannot be disabled...

9.8CVSS6.9AI score0.00987EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/10/30 12:0 a.m.5 views

The vulnerability of microprogrammed multifunctional devices (MFUs) such as Xerox Altalink, Versalink, and WorkCentre lies in the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows a perpetrator to execute arbitrary code.

The vulnerability of microprogrammed multifunctional devices MFUs such as Xerox Altalink, Versalink, and WorkCentre lies in the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to execute...

9CVSS7.5AI score0.01214EPSS
Exploits2References3Affected Software15
CNNVD
CNNVD
added 2024/10/17 12:0 a.m.4 views

Xerox多款产品 安全漏洞

Xerox AltaLink and others are products of Xerox Corporation, U.S.A. Xerox AltaLink is a hardware device.Xerox VersaLink is a line of commercial printers.Xerox WorkCentre is a line of all-in-one printers. A security vulnerability exists in various Xerox products, which stems from the presence of a...

7.2CVSS7.6AI score0.01214EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2023/12/14 12:0 a.m.11 views

PT-2023-9607 · Xerox · Xerox Altalink +2

Name of the Vulnerable Software and Affected Versions: Xerox Altalink, Versalink, and WorkCentre products affected versions not specified Description: The issue is related to a lack of measures to neutralize special elements used in an operating system command, allowing an attacker to execute...

9CVSS7.8AI score0.01214EPSS
Exploits2References23
NCSC
NCSC
added 2021/07/29 12:0 a.m.6 views

Vulnerabilities fixed in Xerox AltaLink systems

Xerox has released a cumulative update that fixes several vulnerabilities that could lead to: Security measure circumvention SQL Injection Accessing sensitive data Xerox has released updates to address the vulnerabilities in AltaLink systems. For more information, see:...

9.8CVSS7.5AI score0.01017EPSS
Exploits0
OSV
OSV
added 2021/04/13 9:15 p.m.4 views

CVE-2019-10881

Xerox AltaLink B8045/B8055/B8065/B8075/B8090, AltaLink C8030/C8035/C8045/C8055/C8070 with software releases before 103.xxx.030.32000 includes two accounts with weak hard-coded passwords which can be exploited and allow unauthorized access which cannot be disabled...

9.8CVSS7.3AI score0.00987EPSS
Exploits0References2
Prion
Prion
added 2021/04/13 9:15 p.m.33 views

Hardcoded credentials

Xerox AltaLink B8045/B8055/B8065/B8075/B8090, AltaLink C8030/C8035/C8045/C8055/C8070 with software releases before 103.xxx.030.32000 includes two accounts with weak hard-coded passwords which can be exploited and allow unauthorized access which cannot be disabled...

7.5CVSS9.3AI score0.00987EPSS
Exploits0References2Affected Software10
CNNVD
CNNVD
added 2021/04/13 12:0 a.m.5 views

Xerox AltaLink 信任管理问题漏洞

Xerox AltaLink is a hardware device from the American Xerox Xerox company. It provides a print-copy function. A security vulnerability exists in Xerox AltaLink versions prior to 103.xxx.030.32000, which stems from including two accounts with weakly hard-coded passwords that can be exploited and...

9.8CVSS8.2AI score0.00987EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.5 views

The vulnerability of the microprogramming software of the multifunctional Xerox AltaLink device, related to insufficient encryption strength, allows attackers to disclose protected information.

The vulnerability of the microprogramming software of the multifunctional Xerox AltaLink device is related to insufficient encryption strength. Exploiting this vulnerability could allow a malicious actor to disclose the protected information remotely...

7.8CVSS7.4AI score0.0068EPSS
Exploits0References4Affected Software10
NVD
NVD
added 2021/03/29 8:15 p.m.12 views

CVE-2021-28668

Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 has several SQL injection vulnerabilities...

9.8CVSS0.00979EPSS
Exploits0References1
OSV
OSV
added 2021/03/29 8:15 p.m.4 views

CVE-2021-28669

Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 provide the ability to set configuration attributes without administrative rights...

7.5CVSS7.2AI score0.00791EPSS
Exploits0References1
OSV
OSV
added 2021/03/29 8:15 p.m.4 views

CVE-2021-28668

Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 has several SQL injection vulnerabilities...

9.8CVSS7.3AI score0.00979EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/03/29 8:15 p.m.2 views

CVE-2021-28668

Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 has several SQL injection vulnerabilities...

9.8CVSS5.6AI score0.00979EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/03/29 8:15 p.m.4 views

CVE-2021-28669

Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 provide the ability to set configuration attributes without administrative rights...

7.5CVSS5.3AI score0.00791EPSS
Exploits0References2
Rows per page
Query Builder