CVE-2020-9330

Exploit

EPSS 0.33%
Published 21.02.2020 23:15:11
Last modified 21.11.2024 05:40:25
Source cve@mitre.org
Teams watchlist Login
Open Login

Certain Xerox WorkCentre printers before 073.xxx.000.02300 do not require the user to reenter or validate LDAP bind credentials when changing the LDAP connector IP address. A malicious actor who gains access to affected devices (e.g., by using default credentials) can change the LDAP connection IP address to a system owned by the actor without knowledge of the LDAP bind credentials. After changing the LDAP connection IP address, subsequent authentication attempts will result in the printer sending plaintext LDAP (Active Directory) credentials to the actor. Although the credentials may belong to a non-privileged user, organizations frequently use privileged service accounts to bind to Active Directory. The attacker gains a foothold on the Active Directory domain at a minimum, and may use the credentials to take over control of the Active Directory domain. This affects 3655*, 3655i*, 58XX*, 58XXi*, 59XX*, 59XXi*, 6655**, 6655i**, 72XX*, 72XXi*, 78XX**, 78XXi**, 7970**, 7970i**, EC7836**, and EC7856** devices.

Affected products Warnungen 0 Metrics 3 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Xerox ≫ Workcentre 3655 Firmware Version < 073.060.000.02300

Xerox ≫ Workcentre 3655 Version-

Xerox ≫ Workcentre 3655i Firmware Version < 073.060.000.02300

Xerox ≫ Workcentre 3655i Version-

Xerox ≫ Workcentre 5845 Firmware Version < 073.190.000.02300

Xerox ≫ Workcentre 5845 Version-

Xerox ≫ Workcentre 5855 Firmware Version < 073.190.000.02300

Xerox ≫ Workcentre 5855 Version-

Xerox ≫ Workcentre 5945 Firmware Version < 073.091.000.02300

Xerox ≫ Workcentre 5945 Version-

Xerox ≫ Workcentre 5955 Firmware Version < 073.091.000.02300

Xerox ≫ Workcentre 5955 Version-

Xerox ≫ Workcentre 6655 Firmware Version < 073.110.000.02300

Xerox ≫ Workcentre 6655 Version-

Xerox ≫ Workcentre 6655i Firmware Version < 073.110.000.02300

Xerox ≫ Workcentre 6655i Version-

Xerox ≫ Workcentre 7220 Firmware Version < 073.030.000.02300

Xerox ≫ Workcentre 7220 Version-

Xerox ≫ Workcentre 7225 Firmware Version < 073.030.000.02300

Xerox ≫ Workcentre 7225 Version-

Xerox ≫ Workcentre 7830 Firmware Version < 073.010.000.02300

Xerox ≫ Workcentre 7830 Version-

Xerox ≫ Workcentre 7835 Firmware Version < 073.010.000.02300

Xerox ≫ Workcentre 7835 Version-

Xerox ≫ Workcentre 7845 Firmware Version < 073.010.000.02300

Xerox ≫ Workcentre 7845 Version-

Xerox ≫ Workcentre 7855 Firmware Version < 073.010.000.02300

Xerox ≫ Workcentre 7855 Version-

Xerox ≫ Workcentre 7970 Firmware Version < 073.200.000.02300

Xerox ≫ Workcentre 7970 Version-

Xerox ≫ Workcentre 7970i Firmware Version < 073.200.000.02300

Xerox ≫ Workcentre 7970i Version-

Xerox ≫ Workcentre Ec7836 Firmware Version < 073.050.000.02300

Xerox ≫ Workcentre Ec7836 Version-

Xerox ≫ Workcentre Ec7856 Firmware Version < 073.020.000.02300

Xerox ≫ Workcentre Ec7856 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.33%	0.554

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	4	8	2.9	AV:N/AC:L/Au:S/C:P/I:N/A:N

CWE-306 Missing Authentication for Critical Function

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

https://securitydocs.business.xerox.com/wp-content/uploads/2020/02/cert_Security_Mini_Bulletin_XRX20D_for_ConnectKey.pdf

Patch

Vendor Advisory

https://www.securicon.com/hackers-can-gain-active-directory-privileges-through-new-vulnerability-in-xerox-printers/

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2020-9330

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-9330

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-9330

EUVD