Xerox Phaser 安全漏洞
CNNVD-ID编号 |
CNNVD-202103-1586 |
CVE编号 |
CVE-2021-28672 |
发布时间 |
2021-03-29 |
更新时间 |
2021-03-30 |
漏洞类型 |
其他 |
漏洞来源 |
N/A |
危险等级 |
超危 |
威胁类型 |
远程 |
厂商 |
N/A |
漏洞介绍
Xerox Phaser 6510是美国Xerox公司的一个打印机。提供打印功能。
Xerox Phaser 存在安全漏洞,该漏洞允许远程攻击者通过Web页面参数处理中的缓冲区溢出来执行任意代码。以下产品及版本受到影响:Xerox Phaser 6510 before 64.65.51 and 64.59.11 (Bridge), WorkCentre 6515 before 65.65.51 and 65.59.11 (Bridge), VersaLink B400 before 37.65.51 and 37.59.01 (Bridge), B405 before 38.65.51 and 38.59.01 (Bridge), B600/B610 before 32.65.51 and 32.59.01 (Bridge), B605/B615 before 33.65.51 and 33.59.01 (Bridge), B7025/30/35 before 58.65.51 and 58.59.11 (Bridge), C400 before 67.65.51 and 67.59.01 (Bridge), C405 before 68.65.51 and 68.59.01 (Bridge), C500/C600 before 61.65.51 and 61.59.01 (Bridge), C505/C605 before 62.65.51 and 62.59.01 (Bridge), C7000 before 56.65.51 and 56.59.01 (Bridge), C7020/25/30 before 57.65.51 and 57.59.01 (Bridge), C8000/C9000 before 70.65.51 and 70.59.01 (Bridge), C8000W before 72.65.51。
漏洞补丁
目前厂商已发布升级了Xerox Phaser 安全漏洞的补丁,Xerox Phaser 安全漏洞的补丁获取链接:
https://securitydocs.business.xerox.com/wp-content/uploads/2021/03/cert_Security_Mini_Bulletin_XRX21D_for_PH6510_WC6515_VersaLink-1.pdf
参考网址
受影响实体
信息来源