5

CVE-2006-0827

EPSS 0.46%
Published 21.02.2006 23:02:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Cross-site scripting vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

Affected products Warnungen 0 Metrics 2 CWE 0 References 8

Data is provided by the National Vulnerability Database (NVD)

Xerox ≫ Workcentre 232

Xerox ≫ Workcentre 232 Editionpro

Xerox ≫ Workcentre 238

Xerox ≫ Workcentre 238 Editionpro

Xerox ≫ Workcentre 245

Xerox ≫ Workcentre 245 Editionpro

Xerox ≫ Workcentre 255

Xerox ≫ Workcentre 255 Editionpro

Xerox ≫ Workcentre 265

Xerox ≫ Workcentre 265 Editionpro

Xerox ≫ Workcentre 275

Xerox ≫ Workcentre 275 Editionpro

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.46%	0.614

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:P/A:N

http://secunia.com/advisories/18952

Vendor Advisory

http://www.vupen.com/english/advisories/2006/0668

http://www.xerox.com/downloads/usa/en/c/cert_XRX06_001.pdf

Patch

Vendor Advisory

http://www.securityfocus.com/bid/16727

https://exchange.xforce.ibmcloud.com/vulnerabilities/24806

https://nvd.nist.gov/vuln/detail/CVE-2006-0827

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-0827

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-0827

EUVD