CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-13171

Some Xerox printers (such as the Phaser 3320 V53.006.16.000) were affected by one or more stack-based buffer overflow vulnerabilities in the Google Cloud Print implementation that would allow an unauthenticated attacker to execute arbitrary code on the device. This was caused by an insecure handling of the register parameters, because the size used within a memcpy() function, which copied the action value into a local variable, was not checked properly.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.018

EPSS Ranking 82.2%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

https://security.business.xerox.com/
https://www.nccgroup.trust/us/our-research/technical-advisory-multiple-vulnerabilities-in-xerox-printers/
https://security.business.xerox.com/
https://www.nccgroup.trust/us/our-research/technical-advisory-multiple-vulnerabilities-in-xerox-printers/

Products affected by CVE-2019-13171

Xerox » Phaser 3320 » Version: N/A

cpe:2.3:h:xerox:phaser_3320:-
Xerox » Phaser 3320 Firmware » Version: v53.006.16.000

cpe:2.3:o:xerox:phaser_3320_firmware:v53.006.16.000

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-13171

Products

Pricing

Contact Us