Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2009-1656

Xerox WorkCentre and WorkCentre Pro 232, 238, 245, 255, 265, 275; and WorkCentre 5632, 5638, 5645, 5655, 5665, 5675, 5687, 7655, 7656, and 7675 allows remote attackers to execute arbitrary commands via unknown attack vectors, aka "command injection vulnerability."

Published

2009-05-16T18:30:00.343

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 10.0 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: COMPLETE
  • Integrity Impact: COMPLETE
  • Availability Impact: COMPLETE
Exploitability Score

10.0

Impact Score

10.0

Weaknesses
  • Type: Primary
    NVD-CWE-Other
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Hardware xerox workcentre 232 Yes
Hardware xerox workcentre 232 Yes
Hardware xerox workcentre 238 Yes
Hardware xerox workcentre 238 Yes
Hardware xerox workcentre 245 Yes
Hardware xerox workcentre 245 Yes
Hardware xerox workcentre 255 Yes
Hardware xerox workcentre 255 Yes
Hardware xerox workcentre 265 Yes
Hardware xerox workcentre 265 Yes
Hardware xerox workcentre 275 Yes
Hardware xerox workcentre 275 Yes
Hardware xerox workcentre 5632 Yes
Hardware xerox workcentre 5638 Yes
Hardware xerox workcentre 5645 Yes
Hardware xerox workcentre 5655 Yes
Hardware xerox workcentre 5665 Yes
Hardware xerox workcentre 5675 Yes
Hardware xerox workcentre 5687 Yes
Hardware xerox workcentre 7655 Yes
Hardware xerox workcentre 7665 Yes
Hardware xerox workcentre 7675 Yes
References