Xerox

Workcentre

20 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2009-1656

  • EPSS 7.74%
  • Published 16.05.2009 18:30:00
  • Last modified 09.04.2025 00:30:58

Xerox WorkCentre and WorkCentre Pro 232, 238, 245, 255, 265, 275; and WorkCentre 5632, 5638, 5645, 5655, 5665, 5675, 5687, 7655, 7656, and 7675 allows remote attackers to execute arbitrary commands via unknown attack vectors, aka "command injection v...

4.3

CVE-2008-6436

  • EPSS 0.52%
  • Published 06.03.2009 18:30:00
  • Last modified 09.04.2025 00:30:58

Cross-site scripting (XSS) vulnerability in the Web Server in Xerox WorkCentre 7132, 7228, 7235, and 7245 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3

CVE-2008-2825

  • EPSS 0.48%
  • Published 23.06.2008 17:41:00
  • Last modified 09.04.2025 00:30:58

Cross-site scripting (XSS) vulnerability in the embedded Web Server in Xerox WorkCentre M123, M128, and 133 and WorkCentre Pro 123, 128, and 133 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

10

CVE-2008-2824

  • EPSS 1.97%
  • Published 23.06.2008 17:41:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the Extensible Interface Platform in Web Services in Xerox WorkCentre 7655, 7665, and 7675 allows remote attackers to make configuration changes via unknown vectors.

5.8

CVE-2006-6468

  • EPSS 0.05%
  • Published 11.12.2006 18:28:00
  • Last modified 09.04.2025 00:30:58

Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 do not check the Fully Qualified Domain Name (FQDN) during a "Validate Repository SSL Certificate" scan, which has unknown impact and a...

10

CVE-2006-6473

  • EPSS 0.36%
  • Published 11.12.2006 18:28:00
  • Last modified 09.04.2025 00:30:58

Multiple unspecified vulnerabilities in Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 have unknown impact and attack vectors, related to (1) an Immediate Image Overwrite (IIO) error...

10

CVE-2006-6472

  • EPSS 0.4%
  • Published 11.12.2006 18:28:00
  • Last modified 09.04.2025 00:30:58

The httpd.conf file in Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 configures port 443 to be always active, which has unknown impact and remote attack vectors.

10

CVE-2006-6471

  • EPSS 0.3%
  • Published 11.12.2006 18:28:00
  • Last modified 09.04.2025 00:30:58

Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 use weak permissions for certain files, which allows unspecified file access.

10

CVE-2006-6470

  • EPSS 0.4%
  • Published 11.12.2006 18:28:00
  • Last modified 09.04.2025 00:30:58

The SNMP Agent in Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 returns no error for a non-writable object, which has unknown impact and attack vectors. NOTE: due to the vagueness ...

5.8

CVE-2006-6469

  • EPSS 0.1%
  • Published 11.12.2006 18:28:00
  • Last modified 09.04.2025 00:30:58

Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 do not block the postgres port (5432/tcp), which has unknown impact and remote attack vectors, probably related to unauthorized connect...