Home
HIGH: 7.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:LDefault status
unknown
Any version before 37.82.53
affected
Default status
unknown
Any version before 38.82.53
affected
Default status
unknown
Any version before 67.82.53
affected
Default status
unknown
Any version before 68.82.53
affected
Default status
unknown
Any version before 32.82.53
affected
Default status
unknown
Any version before 33.82.53
affected
Default status
unknown
Any version before 61.82.53
affected
Default status
unknown
Any version before 62.82.53
affected
Default status
unknown
Any version before 56.75.53
affected
Default status
unknown
Any version before 57.75.53
affected
Default status
unknown
Any version before 58.75.53
affected
Default status
unknown
Any version before 59.24.53
affected
Default status
unknown
Any version before 69.24.53
affected
Default status
unknown
Any version before 70.75.53
affected
Default status
unknown
Any version before 72.75.53
affected
Default status
unknown
Any version before 64.75.53
affected
Default status
unknown
Any version before 65.75.53
affected
Description
With address book access, SMB/FTP settings could be modified, redirecting scans and possibly capturing credentials. This requires enabled scan functions and printer access.
Problem types
CWE-306 Missing Authentication for Critical Function
CWE-522 Insufficiently Protected Credentials
Product status
Any version before 37.82.53
Any version before 38.82.53
Any version before 67.82.53
Any version before 68.82.53
Any version before 32.82.53
Any version before 33.82.53
Any version before 61.82.53
Any version before 62.82.53
Any version before 56.75.53
Any version before 57.75.53
Any version before 58.75.53
Any version before 59.24.53
Any version before 69.24.53
Any version before 70.75.53
Any version before 72.75.53
Any version before 64.75.53
Any version before 65.75.53
References
securitydocs.business.xerox.com/...Phaser-and-WorkCentre.pdf
