Home
HIGH: 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HDefault status
unaffected
103.xxx.024.18600 (custom)
affected
Default status
unaffected
103.xxx.024.18600
affected
Default status
unaffected
103.023.031.35105
affected
Default status
unaffected
103.xxx.013.14115
affected
Default status
unaffected
119.xxx.023.13006
affected
Default status
unaffected
111.xxx.003.11600
affected
Default status
unaffected
119.xxx.003.11705
affected
Default status
unaffected
075.060.004.07810
affected
Default status
unaffected
075.091.004.07810
affected
Default status
unaffected
075.110.004.07810
affected
Default status
unaffected
075.030.004.07810
affected
Default status
unaffected
075.010 004.07810
affected
Default status
unaffected
075.040.004.07810
affected
Default status
unaffected
075.080.004.07810
affected
Default status
unaffected
075.200.004.07810
affected
Default status
unaffected
075.050.004.07810
affected
Default status
unaffected
075.020.004.07810
affected
Description
Authenticated Remote Code Execution in Altalink, Versalink & WorkCentre Products.
Problem types
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')
Product status
103.xxx.024.18600 (custom)
103.xxx.024.18600
103.023.031.35105
103.xxx.013.14115
119.xxx.023.13006
111.xxx.003.11600
119.xxx.003.11705
075.060.004.07810
075.091.004.07810
075.110.004.07810
075.030.004.07810
075.010 004.07810
075.040.004.07810
075.080.004.07810
075.200.004.07810
075.050.004.07810
075.020.004.07810
References
seclists.org/fulldisclosure/2024/Oct/17
securitydocs.business.xerox.com/...re-–-CVE-2024-6333-.pdf
