CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-19832

Xerox AltaLink C8035 printers allow CSRF. A request to add users is made in the Device User Database form field to the xerox.set URI. (The frmUserName value must have a unique name.)

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.6%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

http://packetstormsecurity.com/files/155709/Xerox-AltaLink-C8035-Printer-Cross-Site-Request-Forgery.html
http://packetstormsecurity.com/files/155709/Xerox-AltaLink-C8035-Printer-Cross-Site-Request-Forgery.html

Products affected by CVE-2019-19832

Xerox » Altalink C8035 » Version: N/A

cpe:2.3:h:xerox:altalink_c8035:-
Xerox » Altalink C8035 Firmware » Version: N/A

cpe:2.3:o:xerox:altalink_c8035_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-19832

Products

Pricing

Contact Us