Xerox Phaser 安全漏洞

CNNVD-ID编号 CNNVD-202103-1586
CVE编号 CVE-2021-28672
发布时间 2021-03-29
更新时间 2021-03-30
漏洞类型 其他
漏洞来源 N/A
危险等级 超危
威胁类型 远程
厂 商 N/A

漏洞介绍

Xerox Phaser 6510是美国Xerox公司的一个打印机。提供打印功能。 Xerox Phaser 存在安全漏洞,该漏洞允许远程攻击者通过Web页面参数处理中的缓冲区溢出来执行任意代码。以下产品及版本受到影响:Xerox Phaser 6510 before 64.65.51 and 64.59.11 (Bridge), WorkCentre 6515 before 65.65.51 and 65.59.11 (Bridge), VersaLink B400 before 37.65.51 and 37.59.01 (Bridge), B405 before 38.65.51 and 38.59.01 (Bridge), B600/B610 before 32.65.51 and 32.59.01 (Bridge), B605/B615 before 33.65.51 and 33.59.01 (Bridge), B7025/30/35 before 58.65.51 and 58.59.11 (Bridge), C400 before 67.65.51 and 67.59.01 (Bridge), C405 before 68.65.51 and 68.59.01 (Bridge), C500/C600 before 61.65.51 and 61.59.01 (Bridge), C505/C605 before 62.65.51 and 62.59.01 (Bridge), C7000 before 56.65.51 and 56.59.01 (Bridge), C7020/25/30 before 57.65.51 and 57.59.01 (Bridge), C8000/C9000 before 70.65.51 and 70.59.01 (Bridge), C8000W before 72.65.51。

漏洞补丁

目前厂商已发布升级了Xerox Phaser 安全漏洞的补丁,Xerox Phaser 安全漏洞的补丁获取链接: https://securitydocs.business.xerox.com/wp-content/uploads/2021/03/cert_Security_Mini_Bulletin_XRX21D_for_PH6510_WC6515_VersaLink-1.pdf

参考网址

  • 暂无

受影响实体

  • 暂无

信息来源