Vulnerabilities > Xerox > Altalink C8055 Firmware > 103.002.010.14010

DATE CVE VULNERABILITY TITLE RISK
2021-03-29 CVE-2021-28669 Missing Authorization vulnerability in Xerox products
Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 provide the ability to set configuration attributes without administrative rights.
network
low complexity
xerox CWE-862
7.5
2021-03-29 CVE-2021-28668 SQL Injection vulnerability in Xerox products
Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 has several SQL injection vulnerabilities.
network
low complexity
xerox CWE-89
critical
9.8
2021-03-29 CVE-2021-28670 Unspecified vulnerability in Xerox products
Xerox AltaLink B8045/B8090 before 103.008.030.32000, C8030/C8035 before 103.001.030.32000, C8045/C8055 before 103.002.030.32000 and C8070 before 103.003.030.32000 allow unauthorized users, by leveraging the Scan To Mailbox feature, to delete arbitrary files from the disk.
network
low complexity
xerox
critical
9.1