CVE-2026-1769 | THREATINT

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Xerox CentreWare on Windows allows Stored XSS.This issue affects CentreWare: through 7.0.6. Consider upgrading Xerox® CentreWare Web® to v7.2.2.25 via the software available on Xerox.com

PUBLISHED Reserved 2026-02-02 | Published 2026-02-06 | Updated 2026-02-06 | Assigner Xerox

MEDIUM: 5.3CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:N

Problem types

CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')

Product status

Default status

affected

Any version

affected

References

securitydocs.business.xerox.com/...-Xerox-CentreWare-Web.pdf

cve.org (CVE-2026-1769)

nvd.nist.gov (CVE-2026-1769)

Download JSON