VDB
WID-SEC-W-2023-0838
WID-SEC-W-2023-0838
PUBLISHED
CVSS 8.699999809265137 HIGH
FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.
Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Xerox FreeFlow Print Server v2 | ||
| Xerox FreeFlow Print Server 9 |
Exploit Intelligence
- A Zeek CVE-2022-24491 detector. (github-poc-repo)
- POC for CLFS CVE-2022-24481 (github-poc-repo)
- 0x7n6/CVE-2022-24500 (github-poc-repo)
- PoC for CVE-2022-21340 (github-poc-repo)
- Detects attempts and successful exploitation of CVE-2022-26809 (github-poc-repo)
- Mr-Alperen/CVE-2022-26810 (github-poc-repo)
- CVE-2022-24521 poc (github-poc-repo)
- uname1able/CVE-2022-24481 (github-poc-repo)
- PoC for CVE-2022-28282 (github-poc)
- PoC for CVE-2022-28281 a Mozilla Firefox Out of bounds write. (github-poc)
…and 34 more exploits
Timeline
- May 11, 2022 CVE Published
- Apr 3, 2023 CVE Updated
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2023-0838.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0838 advisory
- https://security.business.xerox.com/wp-content/uploads/2023/04/Xerox-Security-Bulletin-XRX23-005-Xerox%25C2%25AE-FreeFlow%25C2%25AE-Print-Server-v9.pdf url
- https://security.business.xerox.com/wp-content/uploads/2022/05/Xerox-Security-Bulletin-XRX22-010-FreeFlowPrint-Server-v2-Windows10.pdf url