VDB
WID-SEC-W-2023-2917
WID-SEC-W-2023-2917
PUBLISHED
FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE Linux | ||
| SUSE openSUSE | ||
| Xerox FreeFlow Print Server v7 | ||
| Xerox FreeFlow Print Server v9 | ||
| Xerox FreeFlow Print Server v2 / Windows 10 | ||
| Xerox FreeFlow Print Server 9 | ||
| Xerox FreeFlow Print Server v9 for Solaris |
Exploit Intelligence
- Spectre (CVE-2017-5753) (CVE-2017-5715). Not By Me. Collected from Book. (github-poc-repo)
- 2018年1月2日 (CVE-2017-5753 和 CVE-2017-5715) "幽灵" Spectre 漏洞利用 (github-poc-repo)
- Example of using revealed "Spectre" exploit (CVE-2017-5753 and CVE-2017-5715) (github-poc-repo)
- Spectre exploit (github-poc-repo)
- Example of using revealed "Spectre" exploit (CVE-2017-5753 and CVE-2017-5715) (github-poc-repo)
- The demo of the speculative execution attack Spectre (CVE-2017-5753, CVE-2017-5715). (github-poc-repo)
- This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/407311... (github-poc-repo)
- a list of BIOS/Firmware fixes adressing CVE-2017-5715, CVE-2017-5753, CVE-2017-5754 (github-poc-repo)
- Assesses a system for the "speculative execution" vulnerabilities described in CVE-2017-5715, CVE-2017-5753, CVE-2017-5754 (github-poc-repo)
- GalloLuigi/Analisi-CVE-2017-5715 (github-poc-repo)
…and 75 more exploits
Timeline
- Nov 14, 2023 CVE Published
- Sep 3, 2025 CVE Updated
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2917.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2917 advisory
- https://securitydocs.business.xerox.com/wp-content/uploads/2023/11/XRX23-016_FFPSv7-S10_MediaInstall_Nov2023.pdf url
- https://securitydocs.business.xerox.com/wp-content/uploads/2023/11/XRX23-017_FFPSv7-S11_MediaInstall_Nov2023.pdf url
- https://security.business.xerox.com/wp-content/uploads/2023/11/Xerox-Security-Bulletin-XRX23-019-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v9.pdf url
- https://securitydocs.business.xerox.com/wp-content/uploads/2023/11/XRX23-021_FFPSv2_Win10_SecurityBulletin_Nov2023.pdf url
- https://security.business.xerox.com/wp-content/uploads/2023/11/XRX23-022_FFPSv9-S11_MediaInstall_Nov2023.pdf url
- https://security.business.xerox.com/wp-content/uploads/2024/03/Xerox-Security-Bulletin-XRX24-005-Xerox-FreeFlow%C2%AE-Print-Server-v9_Feb-2024.pdf url
- https://security.business.xerox.com/wp-content/uploads/2024/03/Xerox%C2%AE-Security-Bulletin-XRX24-001-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v9.pdf url
- https://lists.suse.com/pipermail/sle-security-updates/2024-November/019796.html url
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3HI2RC7AJAHY74Q6MK7GNGWU6TITB22V/ url