Описание
Xerox AltaLink C8035 printers allow CSRF. A request to add users is made in the Device User Database form field to the xerox.set URI. (The frmUserName value must have a unique name.)
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:xerox:altalink_c8035_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:xerox:altalink_c8035:-:*:*:*:*:*:*:*
EPSS
Процентиль: 40%
0.00183
Низкий
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-352
Связанные уязвимости
github
больше 3 лет назад
Xerox AltaLink C8035 printers allow CSRF. A request to add users is made in the Device User Database form field to the xerox.set URI. (The frmUserName value must have a unique name.)
EPSS
Процентиль: 40%
0.00183
Низкий
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-352