Vulnerabilities > Xerox
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-07 | CVE-2024-47556 | Path Traversal vulnerability in Xerox Freeflow Core Pre-Auth RCE via Path Traversal | 9.8 |
| 2024-10-07 | CVE-2024-47557 | Path Traversal vulnerability in Xerox Freeflow Core Pre-Auth RCE via Path Traversal | 9.8 |
| 2024-10-07 | CVE-2024-47558 | Path Traversal vulnerability in Xerox Freeflow Core 7.0 Authenticated RCE via Path Traversal | 8.8 |
| 2024-10-07 | CVE-2024-47559 | Path Traversal vulnerability in Xerox Freeflow Core 7.0 Authenticated RCE via Path Traversal | 8.8 |
| 2023-11-02 | CVE-2023-46327 | Improper Authentication vulnerability in multiple products Multiple MFPs (multifunction printers) provided by FUJIFILM Business Innovation Corp. | 5.9 |
| 2023-01-31 | CVE-2022-45897 | Cleartext Storage of Sensitive Information vulnerability in Xerox Workcentre 3550 Firmware 25.003.03.000 On Xerox WorkCentre 3550 25.003.03.000 devices, an authenticated attacker can view the SMB server settings and can obtain the stored cleartext credentials associated with those settings. | 6.5 |
| 2022-04-04 | CVE-2022-26572 | Unspecified vulnerability in Xerox Colorqube 8580 Firmware Xerox ColorQube 8580 was discovered to contain an access control issue which allows attackers to print, view the status, and obtain sensitive information. | 7.5 |
| 2022-02-15 | CVE-2021-37354 | Out-of-bounds Write vulnerability in Xerox Phaser 4622 Firmware 35.013.01.000 Xerox Phaser 4622 v35.013.01.000 was discovered to contain a buffer overflow in the function sub_3226AC via the TIMEZONE variable. | 9.8 |
| 2022-02-10 | CVE-2022-23321 | Cross-site Scripting vulnerability in Xerox Xmpie Ustore 12.3.7244.0 A persistent cross-site scripting (XSS) vulnerability exists on two input fields within the administrative panel when editing users in the XMPie UStore application on version 12.3.7244.0. | 4.8 |
| 2022-02-07 | CVE-2022-23320 | Improper Authentication vulnerability in Xerox Xmpie Ustore 12.3.7244.0 XMPie uStore 12.3.7244.0 allows for administrators to generate reports based on raw SQL queries. | 7.5 |