XML Injection Vulnerability in Xerox FreeFlow Core Software

CVE-2025-8355

What is CVE-2025-8355?

CVE-2025-8355 is an XML Injection vulnerability discovered in Xerox FreeFlow Core software, specifically affecting version 8.0.4 of the product. Xerox FreeFlow Core is designed for managing and automating print production workflows, enabling users to integrate various print devices and processes for enhanced operational efficiency. This vulnerability arises from the software's improper handling of XML input, which allows an attacker to inject malicious XML containing references to internal URLs. This indicates a potential for Server-Side Request Forgery (SSRF), where an attacker could manipulate the server to send unauthorized requests to internal services, thus compromising the integrity and confidentiality of an organization's network and data.

Potential impact of CVE-2025-8355

1. Unauthorized Access to Internal Resources: By exploiting this vulnerability, attackers can craft requests that the server will process, potentially gaining access to sensitive internal systems and bypassing network security measures meant to protect such resources.

2. Data Leakage and Breaches: The ability to reference internal URLs can lead to unauthorized access to confidential data stored within the organization's internal servers, resulting in serious data breaches that could expose sensitive information.

3. Compromise of Network Security: The exploitation of CVE-2025-8355 could facilitate further attacks within the network, allowing attackers to pivot to other systems or services, increasing the attack surface and potentially leading to more extensive compromises.

References