5

CVE-2010-0549

EPSS 0.35%
Veröffentlicht 04.02.2010 20:15:50
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Unspecified vulnerability in the Network Controller in Xerox WorkCentre 6400 System Software 060.070.109.11407 through 060.070.109.29510, and Net Controller 060.079.11410 through 060.079.29310, allows remote attackers to access "directory structure" via a crafted PostScript file, aka "Unauthorized Directory Structure Access Vulnerability."

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Xerox ≫ Workcentre 6400 Net Controller Version060.079.11410

Xerox ≫ Workcentre 6400 Net Controller Version060.079.29310

Xerox ≫ Workcentre 6400 System Software Version060.070.109.11407

Xerox ≫ Workcentre 6400 System Software Version060.070.109.29510

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.35%	0.541

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://secunia.com/advisories/38339

Vendor Advisory

http://www.securitytracker.com/id?1023500

http://www.vupen.com/english/advisories/2010/0208

Vendor Advisory

http://www.xerox.com/downloads/usa/en/c/cert_XRX10-001_v1.0.pdf

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2010-0549

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-0549

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-0549

EUVD