Vulnerabilities > CVE-2021-37354 - Out-of-bounds Write vulnerability in Xerox Phaser 4622 Firmware 35.013.01.000

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

xerox

CWE-787

critical

NVD

Published: 2022-02-15

Updated: 2022-02-24

Summary

Xerox Phaser 4622 v35.013.01.000 was discovered to contain a buffer overflow in the function sub_3226AC via the TIMEZONE variable. This vulnerability allows attackers to cause a Denial of Service (DoS) via crafted overflow data.

Vulnerable Configurations

Part	Description	Count
OS	Xerox Xerox Phaser 4622 Firmware 35.013.01.000	1
Hardware	Xerox Xerox Phaser 4622 -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/Ainevsia/CVE-Request/tree/main/Xerox/1