Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Xerox Subscribe
Filtered by product Workcentre 232
Total 12 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-6440 1 Xerox 6 Workcentre 232, Workcentre 238, Workcentre 245 and 3 more 2017-12-18 7.5 HIGH N/A
Multiple unspecified vulnerabilities in Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 allow remote attackers to have an unspecified impact via unspecified vectors relating to "HTTP Security issues."
CVE-2006-6430 1 Xerox 6 Workcentre 232, Workcentre 238, Workcentre 245 and 3 more 2017-07-28 7.8 HIGH N/A
Web services in Xerox WorkCentre and WorkCentre Pro before 12.060.17.000, 13.x before 13.060.17.000, and 14.x before 14.060.17.000 do not require HTTPS, which allows remote attackers to obtain sensitive information by sniffing the unencrypted HTTP traffic.
CVE-2006-5290 1 Xerox 6 Workcentre 232, Workcentre 238, Workcentre 245 and 3 more 2017-07-19 7.5 HIGH N/A
The ESS/ Network Controller and MicroServer Web Server components of Xerox WorkCentre and WorkCentre Pro 232, 238, 245, 255, 265 and 275 allow remote attackers to bypass authentication and execute arbitrary code via "WebUI command injection on TCP/IP hostname."
CVE-2006-0827 1 Xerox 6 Workcentre 232, Workcentre 238, Workcentre 245 and 3 more 2017-07-19 5.0 MEDIUM N/A
Cross-site scripting vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.
CVE-2006-0825 1 Xerox 6 Workcentre 232, Workcentre 238, Workcentre 245 and 3 more 2017-07-19 7.5 HIGH N/A
Multiple unspecified vulnerabilities in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allow remote attackers to bypass authentication or gain "unauthorized network access" via unknown attack vectors.
CVE-2006-0826 1 Xerox 6 Workcentre 232, Workcentre 238, Workcentre 245 and 3 more 2017-07-19 5.0 MEDIUM N/A
Unspecified vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote attackers to cause a denial of service via a crafted Postscript request.
CVE-2006-0828 1 Xerox 6 Workcentre 232, Workcentre 238, Workcentre 245 and 3 more 2011-03-07 5.0 MEDIUM N/A
Unspecified vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote attackers to "reduce effectiveness of security features" via unknown attack vectors.
CVE-2006-6441 1 Xerox 6 Workcentre 232, Workcentre 238, Workcentre 245 and 3 more 2008-09-10 4.6 MEDIUM N/A
Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 allows local users to bypass security controls and boot Alchemy via certain alternate boot media, as demonstrated by a USB thumb drive.
CVE-2006-6434 1 Xerox 6 Workcentre 232, Workcentre 238, Workcentre 245 and 3 more 2008-09-10 7.5 HIGH N/A
Unspecified vulnerability in the Web User Interface in Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 allows remote attackers to bypass authentication controls via unknown vectors.
CVE-2006-6436 1 Xerox 6 Workcentre 232, Workcentre 238, Workcentre 245 and 3 more 2008-09-10 6.8 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the Network controller in Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 allows remote attackers to inject arbitrary web script or HTML via HTTP TRACE messages.
CVE-2006-6438 1 Xerox 6 Workcentre 232, Workcentre 238, Workcentre 245 and 3 more 2008-09-10 4.9 MEDIUM N/A
Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 leaves sensitive user data in http.log after an Immediate Image Overwrite (IIO), which allows local users to obtain the data by reading the http.log file.
CVE-2006-6439 1 Xerox 6 Workcentre 232, Workcentre 238, Workcentre 245 and 3 more 2008-09-10 7.8 HIGH N/A
Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 allows remote attackers to download the audit log and obtain potentially sensitive information via unspecified vectors.