5

CVE-2010-0549

EPSS 0.35%
Published 04.02.2010 20:15:50
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

Unspecified vulnerability in the Network Controller in Xerox WorkCentre 6400 System Software 060.070.109.11407 through 060.070.109.29510, and Net Controller 060.079.11410 through 060.079.29310, allows remote attackers to access "directory structure" via a crafted PostScript file, aka "Unauthorized Directory Structure Access Vulnerability."

Affected products Warnungen 0 Metrics 2 CWE 1 References 7

Data is provided by the National Vulnerability Database (NVD)

Xerox ≫ Workcentre 6400 Net Controller Version060.079.11410

Xerox ≫ Workcentre 6400 Net Controller Version060.079.29310

Xerox ≫ Workcentre 6400 System Software Version060.070.109.11407

Xerox ≫ Workcentre 6400 System Software Version060.070.109.29510

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.35%	0.541

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://secunia.com/advisories/38339

Vendor Advisory

http://www.securitytracker.com/id?1023500

http://www.vupen.com/english/advisories/2010/0208

Vendor Advisory

http://www.xerox.com/downloads/usa/en/c/cert_XRX10-001_v1.0.pdf

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2010-0549

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-0549

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-0549

EUVD