75 matches found
CVE-2021-28668
Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 has several SQL injection vulnerabilities...
EUVD-2018-8947
Malware in sbrugna...
EUVD-2019-2603
Malware in sbrugna...
EUVD-2021-15332
Malware in sbrugna...
EUVD-2021-15331
Malware in sbrugna...
EUVD-2024-47447
Malicious code in bioql PyPI...
CVE-2021-28669
Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 provide the ability to set configuration attributes without administrative rights...
CVE-2019-19832
Xerox AltaLink C8035 printers allow CSRF. A request to add users is made in the Device User Database form field to the xerox.set URI. The frmUserName value must have a unique name...
CVE-2019-10881
Xerox AltaLink B8045/B8055/B8065/B8075/B8090, AltaLink C8030/C8035/C8045/C8055/C8070 with software releases before 103.xxx.030.32000 includes two accounts with weak hard-coded passwords which can be exploited and allow unauthorized access which cannot be disabled...
CVE-2024-6333
Authenticated Remote Code Execution in Altalink, Versalink & WorkCentre Products...
CVE-2024-6333 Authenticated Remote Code Execution in Altalink, Versalink & WorkCentre Products
Authenticated Remote Code Execution in Altalink, Versalink & WorkCentre Products...
CVE-2024-6333 Authenticated Remote Code Execution in Altalink, Versalink & WorkCentre Products
Authenticated Remote Code Execution in Altalink, Versalink & WorkCentre Products...
CVE-2024-6333
CVE-2024-6333 affects Xerox AltaLink, VersaLink, and WorkCentre printers. The vulnerability is an authenticated remote code execution in the device’s software, caused by inadequate input handling that allows injection of specially crafted commands to the OS. The result is arbitrary code execution...
Xerox多款产品 安全漏洞
Xerox AltaLink and others are products of Xerox Corporation, U.S.A. Xerox AltaLink is a hardware device.Xerox VersaLink is a line of commercial printers.Xerox WorkCentre is a line of all-in-one printers. A security vulnerability exists in various Xerox products, which stems from the presence of a...
PT-2023-9607 · Xerox · Xerox Altalink +2
Name of the Vulnerable Software and Affected Versions: Xerox Altalink, Versalink, and WorkCentre products affected versions not specified Description: The issue is related to a lack of measures to neutralize special elements used in an operating system command, allowing an attacker to execute...
Xerox Printers Multiple Vulnerabilities (XRX23-020)
Multiple Xerox printers are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
Vulnerabilities fixed in Xerox AltaLink systems
Xerox has released a cumulative update that fixes several vulnerabilities that could lead to: Security measure circumvention SQL Injection Accessing sensitive data Xerox has released updates to address the vulnerabilities in AltaLink systems. For more information, see:...
Vulnerability fixed in Xerox AltaLink systems
Xerox has fixed a vulnerability in AltaLink systems. A remote malicious person could exploit the vulnerability to conduct execute a Cross-Site Scripting XSS attack. Such an attack can result in the execution of arbitrary script code in the browser used to access the system. No CVE vulnerability h...
CVE-2019-10881
Xerox AltaLink B8045/B8055/B8065/B8075/B8090, AltaLink C8030/C8035/C8045/C8055/C8070 with software releases before 103.xxx.030.32000 includes two accounts with weak hard-coded passwords which can be exploited and allow unauthorized access which cannot be disabled...
CVE-2019-10881
Xerox AltaLink B8045/B8055/B8065/B8075/B8090, AltaLink C8030/C8035/C8045/C8055/C8070 with software releases before 103.xxx.030.32000 includes two accounts with weak hard-coded passwords which can be exploited and allow unauthorized access which cannot be disabled...