cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-28668,https://securityvulnerability.io/vulnerability/CVE-2021-28668,SQL Injection Vulnerabilities in Xerox AltaLink B80xx and C80xx Series,"Several SQL injection vulnerabilities have been identified in the Xerox AltaLink B80xx and C80xx series of multifunction printers. These weaknesses could allow attackers to execute arbitrary SQL commands, potentially leading to unauthorized access to sensitive data. Users with affected versions are advised to update their firmware to the latest releases to mitigate these vulnerabilities and ensure the security of their printing environment.",Xerox,Altalink B8045 Firmware,9.8,CRITICAL,0.0013800000306218863,false,,false,false,false,,,false,false,,2021-03-29T19:28:09.000Z,0
CVE-2021-28669,https://securityvulnerability.io/vulnerability/CVE-2021-28669,Configuration Attribute Modification in Xerox AltaLink Multifunction Printers,Certain models of Xerox AltaLink Multifunction Printers prior to specified firmware versions allow users to change configuration settings without proper administrative privileges. This unauthorized modification can potentially lead to misconfigurations and expose sensitive data. Users must ensure their devices are updated to mitigate these risks and maintain secure operational integrity.,Xerox,Altalink B8045 Firmware,7.5,HIGH,0.000699999975040555,false,,false,false,false,,,false,false,,2021-03-29T19:27:59.000Z,0
CVE-2021-28670,https://securityvulnerability.io/vulnerability/CVE-2021-28670,Unauthorized File Deletion Vulnerability in Xerox AltaLink Products,"Xerox AltaLink printers, specifically B8045/B8090, C8030/C8035, C8045/C8055, and C8070 models prior to their respective firmware versions, are susceptible to a security flaw that enables unauthorized users to delete arbitrary files on the device's disk by exploiting the Scan To Mailbox feature. This vulnerability poses a risk of data loss and could lead to the compromise of sensitive information.",Xerox,Altalink B8045 Firmware,9.1,CRITICAL,0.0010300000431016088,false,,false,false,false,,,false,false,,2021-03-29T17:40:09.000Z,0
CVE-2019-18630,https://securityvulnerability.io/vulnerability/CVE-2019-18630,Data Exposure Vulnerability in Xerox Multifunction Printers,"A vulnerability exists in specific Xerox AltaLink multifunction printers, where portions of the drive containing executable code are not encrypted. This lack of encryption allows the potential for cryptographic information disclosure, potentially exposing sensitive data to unauthorized access. Affected models include various iterations of the AltaLink B-series and C-series printers that are running software versions prior to 101.00x.099.28200. It is critical for users of these devices to ensure they are using the latest firmware to mitigate risks associated with this vulnerability.",Xerox,Altalink B8045 Firmware,7.5,HIGH,0.0016799999866634607,false,,false,false,false,,,false,false,,2021-03-04T22:07:44.000Z,0
CVE-2019-18629,https://securityvulnerability.io/vulnerability/CVE-2019-18629,Unwanted Binary Execution Vulnerability in Xerox AltaLink Multifunction Printers,"Certain Xerox AltaLink multifunction printers, specifically models B8045, B8055, B8065, B8075, B8090 and C8030, C8035, C8045, C8055, C8070, are vulnerable to unauthorized binary execution. This vulnerability arises from flaws in the software versions prior to 101.00x.099.28200, allowing attackers to execute malicious binaries by exploiting a cloned installation. The attack vector necessitates the creation of a clone file that has been signed with a compromised private key, leading to potential security threats for organizations utilizing these devices.",Xerox,Altalink B8045 Firmware,8.1,HIGH,0.0024399999529123306,false,,false,false,false,,,false,false,,2021-03-04T06:12:03.000Z,0
CVE-2019-18628,https://securityvulnerability.io/vulnerability/CVE-2019-18628,Data Encryption Flaw in Xerox Multifunction Printers,"Certain models of Xerox multifunction printers, including the AltaLink B8045/B8090 and C8030/C8070, are susceptible to a vulnerability that allows users with administrative access to disable data encryption. If encryption is turned off, sensitive data may be exposed to unauthorized individuals, facilitating potential cryptographic breaches. This issue affects devices with software versions prior to 101.00x.099.28200, making it crucial for users to ensure they are running updated software and to implement proper access controls.",Xerox,Altalink B8045 Firmware,4.9,MEDIUM,0.0006099999882280827,false,,false,false,false,,,false,false,,2021-03-04T06:09:30.000Z,0