CVE-2010-0548

Опубликовано: 04 фев. 2010

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Multiple unspecified vulnerabilities in the Network Controller and Web Server in Xerox WorkCentre 5632, 5638, 5645, 5655, 5665, 5675, and 5687 allow remote attackers to (1) access mailboxes via unknown vectors that bypass Scan to Mailbox authorization or (2) read device configuration information via via unknown vectors that bypass web server authorization.

Ссылки

http://secunia.com/advisories/38139
Vendor Advisory
http://www.vupen.com/english/advisories/2010/0209
Vendor Advisory
http://www.xerox.com/downloads/usa/en/c/cert_XRX10-002_v1.0.pdf
Patch
Vendor Advisory
http://secunia.com/advisories/38139
Vendor Advisory
http://www.vupen.com/english/advisories/2010/0209
Vendor Advisory
http://www.xerox.com/downloads/usa/en/c/cert_XRX10-002_v1.0.pdf
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:h:xerox:workcentre_5632:*:*:*:*:*:*:*:*

cpe:2.3:h:xerox:workcentre_5638:*:*:*:*:*:*:*:*

cpe:2.3:h:xerox:workcentre_5645:*:*:*:*:*:*:*:*

cpe:2.3:h:xerox:workcentre_5655:*:*:*:*:*:*:*:*

cpe:2.3:h:xerox:workcentre_5665:*:*:*:*:*:*:*:*

cpe:2.3:h:xerox:workcentre_5675:*:*:*:*:*:*:*:*

cpe:2.3:h:xerox:workcentre_5687:*:*:*:*:*:*:*:*

EPSS

Процентиль: 43%

0.00207

Низкий

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-w675-9q69-cp3f

github

почти 4 года назад