cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-55931,https://securityvulnerability.io/vulnerability/CVE-2024-55931,Session Storage Vulnerability in Xerox Workplace Suite,"Xerox Workplace Suite stores user tokens in session storage, which may lead to unauthorized access if a session is compromised. This flaw highlights the importance of securing session data to prevent potential data breaches. A fix is expected in an upcoming release, and users will receive notifications via security bulletins to ensure they can protect their information.",Xerox,Xerox Workplace Suite,6.3,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-27T11:28:45.510Z,0
CVE-2024-55930,https://securityvulnerability.io/vulnerability/CVE-2024-55930,Weak Default Folder Permissions in Xerox Workplace Suite,"The Xerox Workplace Suite is subject to a vulnerability resulting from weak default folder permissions, potentially allowing unauthorized access to sensitive data. This misconfiguration can expose critical information, making it essential for users to review and strengthen their folder permission settings to protect against data breaches.",Xerox,Xerox Workplace Suite,6.6,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-23T17:36:01.763Z,0
CVE-2024-55929,https://securityvulnerability.io/vulnerability/CVE-2024-55929,Mail Spoofing Vulnerability in Xerox Workplace Suite,"A mail spoofing vulnerability in the Xerox Workplace Suite can allow attackers to send emails with forged sender addresses. This could trick recipients into trusting malicious communication, potentially leading to further security breaches or data exposure.",Xerox,Xerox Workplace Suite,5,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-23T17:30:34.224Z,0
CVE-2024-55928,https://securityvulnerability.io/vulnerability/CVE-2024-55928,Clear Text Secrets Exposure in Xerox Workplace Suite,"The Xerox Workplace Suite is affected by a vulnerability that exposes sensitive information, including clear text secrets and remote system secrets. This could allow unauthorized users to access critical data, leading to potential security breaches. Organizations using this software should take immediate steps to mitigate risks associated with this vulnerability and ensure robust security measures are in place.",Xerox,Xerox Workplace Suite,6.8,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-23T17:25:46.915Z,0
CVE-2024-55927,https://securityvulnerability.io/vulnerability/CVE-2024-55927,Token Generation Flaw in Xerox Workplace Suite,"The Xerox Workplace Suite is affected by a security vulnerability due to a flawed implementation of token generation, compounded by the presence of hard-coded keys. This serious design flaw can potentially allow unauthorized access and manipulation of sensitive data within the system. Organizations utilizing this product should prioritize updating their systems to mitigate the risks associated with this vulnerability.",Xerox,Xerox Workplace Suite,6.4,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-23T17:20:29.974Z,0
CVE-2024-55926,https://securityvulnerability.io/vulnerability/CVE-2024-55926,Arbitrary File Upload Vulnerability in Xerox Workplace Suite,"This vulnerability allows attackers to exploit the Xerox Workplace Suite by manipulating HTTP headers, leading to arbitrary file uploads, deletion, and unauthorized file access. Such weaknesses can enable unauthorized users to upload malicious files or delete critical system files, compromising the integrity and confidentiality of the application.",Xerox,Xerox Workplace Suite,6.3,MEDIUM,0.0004400000034365803,false,,false,false,false,,false,false,false,,2025-01-23T17:12:21.371Z,0
CVE-2024-55925,https://securityvulnerability.io/vulnerability/CVE-2024-55925,API Security Bypass in Xerox Workplace Suite,"The vulnerability results from improper handling of API requests, allowing unauthorized users to manipulate headers and bypass security mechanisms. This can lead to exposure of sensitive data or unauthorized access to protected resources within the Xerox Workplace Suite. Users are advised to review the security bulletin and implement recommended measures to mitigate the risk.",Xerox,Xerox Workplace Suite,6.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-23T17:03:33.187Z,0