Remote Code Execution Vulnerability on Xerox WorkCentre Devices

Remote Code Execution Vulnerability on Xerox WorkCentre Devices

CVE-2018-20768 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. An attacker can execute PHP code by leveraging a writable file.

Learn more about our Web Application Penetration Testing UK.