cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-13165,https://securityvulnerability.io/vulnerability/CVE-2019-13165,Buffer Overflow Vulnerability in Xerox Printers IPP Service,"Xerox printers, notably the Phaser 3320, are susceptible to a buffer overflow vulnerability in the IPP service's request parser. This flaw enables an unauthenticated attacker to execute a Denial of Service (DoS) attack, which could disrupt printer availability and potentially allow for arbitrary code execution. Organizations using these printers should implement security measures to protect against exploitation.",Xerox,Phaser 3320 Firmware,9.8,CRITICAL,0.003120000008493662,false,,false,false,false,,,false,false,,2020-03-13T18:35:08.000Z,0
CVE-2019-13166,https://securityvulnerability.io/vulnerability/CVE-2019-13166,Account Lockout Vulnerability in Xerox Printers,"Certain Xerox printers, including the Phaser 3320, lack a mechanism to lock out accounts after multiple failed login attempts. This oversight allows local account credentials to be exposed through brute force guessing attacks, potentially compromising sensitive information and network security. Organizations using these printers are urged to take immediate action to mitigate risks associated with this vulnerability.",Xerox,Phaser 3320 Firmware,7.5,HIGH,0.0014900000533089042,false,,false,false,false,,,false,false,,2020-03-13T18:33:54.000Z,0
CVE-2019-13167,https://securityvulnerability.io/vulnerability/CVE-2019-13167,Multiple Stored XSS Vulnerabilities in Xerox Web Application for Phaser Printers,"Multiple Stored Cross-Site Scripting (XSS) vulnerabilities have been identified in the Xerox Web Application, particularly affecting the Phaser 3320 series. These vulnerabilities can allow attackers to inject malicious scripts into the web application, potentially leading to session hijacking of administrative accounts or execution of unauthorized actions. Attackers leveraging these vulnerabilities may exploit user interactions with the web interface, emphasizing the necessity for immediate security measures.",Xerox,Phaser 3320 Firmware,6.1,MEDIUM,0.0007699999841861427,false,,false,false,false,,,false,false,,2020-03-13T18:24:17.000Z,0
CVE-2019-13168,https://securityvulnerability.io/vulnerability/CVE-2019-13168,Buffer Overflow Vulnerability in Xerox Printers,"A buffer overflow vulnerability exists in the attributes parser of the IPP service in some Xerox printers, including the Phaser 3320. This flaw enables unauthenticated attackers to exploit the vulnerability, potentially leading to a Denial of Service (DoS) condition and allowing the execution of arbitrary code on the affected devices.",Xerox,Phaser 3320 Firmware,9.8,CRITICAL,0.003120000008493662,false,,false,false,false,,,false,false,,2020-03-13T18:23:08.000Z,0
CVE-2019-13169,https://securityvulnerability.io/vulnerability/CVE-2019-13169,Buffer Overflow Vulnerability in Xerox Printer Web Applications,"Certain Xerox printers are susceptible to a buffer overflow vulnerability in the Content-Type HTTP Header of their web applications. This flaw enables an attacker to potentially execute arbitrary code on the affected device, leading to unauthorized access and control. It is crucial for users of these printers to apply the necessary patches and updates to mitigate the risks associated with this vulnerability.",Xerox,Phaser 3320 Firmware,9.8,CRITICAL,0.0038999998942017555,false,,false,false,false,,,false,false,,2020-03-13T18:20:01.000Z,0
CVE-2019-13170,https://securityvulnerability.io/vulnerability/CVE-2019-13170,Cross-Site Request Forgery Vulnerability in Xerox Printers,"Certain Xerox printers, including the Phaser 3320, lack adequate protections against Cross-Site Request Forgery (CSRF) attacks. This vulnerability allows attackers to exploit the absence of CSRF tokens, potentially enabling unauthorized actions and local account takeovers on the device. Organizations using affected Xerox printers are at risk, and it is crucial to implement security measures to mitigate these vulnerabilities.",Xerox,Phaser 3320 Firmware,6.5,MEDIUM,0.0005300000193528831,false,,false,false,false,,,false,false,,2020-03-13T18:18:33.000Z,0
CVE-2019-13171,https://securityvulnerability.io/vulnerability/CVE-2019-13171,Stack-Based Buffer Overflow in Xerox Printers Due to Google Cloud Print Flaw,"Several Xerox printers, particularly the Phaser 3320, contain a stack-based buffer overflow vulnerability within the Google Cloud Print functionality. This vulnerability arises from improper management of registered parameters that leads to unchecked sizes in the memcpy() function, allowing unauthenticated attackers to potentially execute arbitrary code on the affected devices. These security flaws highlight the importance of reviewing and updating device firmware to mitigate risks associated with insecure implementations.",Xerox,Phaser 3320 Firmware,9.8,CRITICAL,0.004149999935179949,false,,false,false,false,,,false,false,,2020-03-13T18:17:14.000Z,0
CVE-2019-13172,https://securityvulnerability.io/vulnerability/CVE-2019-13172,Buffer Overflow Vulnerability in Xerox Printers,"A buffer overflow vulnerability exists in the authentication cookie of certain Xerox printers, such as the Phaser 3320 V53.006.16.000. This vulnerability could be exploited by attackers to execute arbitrary code on the affected devices, potentially compromising their functionality and security. It highlights the importance of maintaining up-to-date software and securing network-connected devices against unauthorized access.",Xerox,Phaser 3320 Firmware,9.8,CRITICAL,0.004129999782890081,false,,false,false,false,,,false,false,,2020-03-13T18:14:27.000Z,0