Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2020-01-31	CVE-2020-5526	Improper Certificate Validation vulnerability in Fujixerox Apeosware Management Suite 2.0.0/2.0.5/2.0.8 The AWMS Mobile App for Android 2.0.0 to 2.0.5 and for iOS 2.0.0 to 2.0.8 does not verify X.509 certificates from servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. network high complexity fujixerox CWE-295	5.9
2019-09-14	CVE-2019-16307	Cross-site Scripting vulnerability in Fujixerox Docushare 7.0.0.C1.609 A Reflected Cross-Site Scripting (XSS) vulnerability in the webEx module in webExMeetingLogin.jsp and deleteWebExMeetingCheck.jsp in Fuji Xerox DocuShare through 7.0.0.C1.609 allows remote attackers to inject arbitrary web script or HTML via the handle parameter (webExMeetingLogin.jsp) and meetingKey parameter (deleteWebExMeetingCheck.jsp). network low complexity fujixerox CWE-79	6.1
2019-09-12	CVE-2019-6004	Open Redirect vulnerability in Fujixerox products Open redirect vulnerability in ApeosWare Management Suite Ver.1.4.0.18 and earlier, and ApeosWare Management Suite 2 Ver.2.1.2.4 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. network low complexity fujixerox CWE-601	6.1