cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-23968,https://securityvulnerability.io/vulnerability/CVE-2022-23968,Remote Device Vulnerability in Xerox VersaLink Firmware,"Xerox VersaLink devices running specific versions of firmware prior to January 26, 2022, are susceptible to a vulnerability that enables remote attackers to cause a permanent denial of service. By exploiting a crafted TIFF file sent via an unauthenticated HTTP POST request, the devices can enter a boot loop due to faulty image parsing after a reboot. Although field technicians can resolve the issue, affected firmware versions including xx.42.01 and xx.50.61 are at risk. A recent vendor statement clarifies that newer firmware versions are not vulnerable.",Xerox,Versalink Firmware,7.5,HIGH,0.002749999985098839,false,,false,false,false,,,false,false,,2022-01-26T05:01:51.000Z,0