7.5
CVE-2006-5290
- EPSS 1.58%
- Veröffentlicht 13.10.2006 20:07:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe ESS/ Network Controller and MicroServer Web Server components of Xerox WorkCentre and WorkCentre Pro 232, 238, 245, 255, 265 and 275 allow remote attackers to bypass authentication and execute arbitrary code via "WebUI command injection on TCP/IP hostname."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Xerox ≫ Workcentre 232 Editionpro
Xerox ≫ Workcentre 238 Editionpro
Xerox ≫ Workcentre 245 Editionpro
Xerox ≫ Workcentre 255 Editionpro
Xerox ≫ Workcentre 265 Editionpro
Xerox ≫ Workcentre 275 Editionpro
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.58% | 0.808 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|