7.5

CVE-2006-6435

EPSS 0.92%
Published 10.12.2006 11:28:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

The SNMP implementation in Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 does not generate authentication failure traps, which allows remote attackers to more easily gain system access and obtain sensitive information via a brute force attack.

Affected products Warnungen 0 Metrics 2 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Xerox ≫ Workcentre Version12.060.17.000

Xerox ≫ Workcentre Version12.060.17.000 Editionpro

Xerox ≫ Workcentre Version13.060.17.000

Xerox ≫ Workcentre Version13.060.17.000 Editionpro

Xerox ≫ Workcentre Version14.060.17.000

Xerox ≫ Workcentre Version14.060.17.000 Editionpro

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.92%	0.749

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://secunia.com/advisories/23265

Vendor Advisory

http://www.xerox.com/downloads/usa/en/c/cert_XRX06_004_v11.pdf

Patch

https://nvd.nist.gov/vuln/detail/CVE-2006-6435

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-6435

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-6435

EUVD