Vulnerabilities > Xerox > Altalink C8055 Firmware > 103.002.010.14010

DATE CVE VULNERABILITY TITLE RISK
2021-03-29 CVE-2021-28669 Missing Authorization vulnerability in Xerox products
Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 provide the ability to set configuration attributes without administrative rights.
network
low complexity
xerox CWE-862
7.5
7.5
2021-03-29 CVE-2021-28668 SQL Injection vulnerability in Xerox products
Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 has several SQL injection vulnerabilities.
network
low complexity
xerox CWE-89
critical
 9.8
9.8
2021-03-29 CVE-2021-28670 Unspecified vulnerability in Xerox products
Xerox AltaLink B8045/B8090 before 103.008.030.32000, C8030/C8035 before 103.001.030.32000, C8045/C8055 before 103.002.030.32000 and C8070 before 103.003.030.32000 allow unauthorized users, by leveraging the Scan To Mailbox feature, to delete arbitrary files from the disk.
network
low complexity
xerox
critical
 9.1
9.1