Vulnerabilities > CVE-2018-16709 - Unspecified vulnerability in Fujixerox products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

fujixerox

exploit available

NVD

Published: 2018-09-07

Updated: 2019-10-03

Summary

Fuji Xerox DocuCentre-V 3065, ApeosPort-VI C3371, ApeosPort-V C4475, ApeosPort-V C3375, DocuCentre-VI C2271, ApeosPort-V C5576, DocuCentre-IV C2263, DocuCentre-V C2263, and ApeosPort-V 5070 devices allow remote attackers to read or write to files via crafted PJL commands.

Vulnerable Configurations

Part	Description	Count
OS	Fujixerox Fujixerox Docucentre V 3065 Firmware - Fujixerox Apeosport V C4475 Firmware - Fujixerox Apeosport VI C3371 Firmware - Fujixerox Apeosport V C3375 Firmware - Fujixerox Docucentre VI C2271 Firmware - Fujixerox Apeosport V C5576 Firmware - Fujixerox Docucentre IV C2263 Firmware - Fujixerox Docucentre V C2263 Firmware - Fujixerox Apeosport V 5070 Firmware -	9
Hardware	Fujixerox Fujixerox Docucentre V 3065 - Fujixerox Apeosport V C4475 - Fujixerox Apeosport VI C3371 - Fujixerox Apeosport V C3375 - Fujixerox Docucentre VI C2271 - Fujixerox Apeosport V C5576 - Fujixerox Docucentre IV C2263 - Fujixerox Docucentre V C2263 - Fujixerox Apeosport V 5070 -	9

Exploit-Db

description	FUJI XEROX DocuCentre-V 3065 Printer - Remote Command Execution. Remote exploit for Hardware platform. Tags: Remote
file	exploits/hardware/remote/45332.py
id	EDB-ID:45332
last seen	2018-10-07
modified	2018-09-05
platform	hardware
port	9100
published	2018-09-05
reporter	Exploit-DB
source	https://www.exploit-db.com/download/45332/
title	FUJI XEROX DocuCentre-V 3065 Printer - Remote Command Execution
type	remote

References

https://www.exploit-db.com/exploits/45332/