|
2020-04-29
|
CVE-2016-11061
|
Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, and 7970i devices before 073.xxx.086.15410 do not properly escape parameters in the support/remoteUI/configrui.php script, which can allow an unauthenticated attacker to execute OS commands on the device.
|
Workcentre_3655_firmware, Workcentre_3655i_firmware, Workcentre_5865_firmware, Workcentre_5865i_firmware, Workcentre_5875_firmware, Workcentre_5875i_firmware, Workcentre_5890_firmware, Workcentre_5890i_firmware, Workcentre_5945_firmware, Workcentre_5945i_firmware, Workcentre_5955_firmware, Workcentre_5955i_firmware, Workcentre_6655_firmware, Workcentre_6655i_firmware, Workcentre_7200_firmware, Workcentre_7200i_firmware, Workcentre_7220_firmware, Workcentre_7225_firmware, Workcentre_7225i_firmware, Workcentre_7830_firmware, Workcentre_7835_firmware, Workcentre_7845_firmware, Workcentre_7855_firmware, Workcentre_7970_firmware, Workcentre_7970i_firmware
|
N/A
|
|
|