Command Injection Vulnerability in Xerox WorkCentre Products
CVE-2009-1656

Currently unrated

Key Information:

Vendor: Xerox
Status: Workcentre
Vendor: CVE Published:; 16 May 2009

What is CVE-2009-1656?

The Xerox WorkCentre series, including models 232, 238, and others, exposes a command injection vulnerability. This flaw enables remote attackers to execute arbitrary commands by exploiting unknown vectors, potentially leading to unauthorized actions and breaches in system integrity.

References

http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1....

x_refsource_CONFIRM

http://www.vupen.com/english/advisories/2009/1328

vdb-entryx_refsource_VUPEN

http://www.securitytracker.com/id?1022238

vdb-entryx_refsource_SECTRACK

EPSS Score

6% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 16, 2009
Vulnerability Reserved
May 16, 2009