A number of Xerox printer fashions, together with EC80xx, AltaLink, VersaLink, and WorkCentre, have been recognized as susceptible to an authenticated distant code execution (RCE) assault.
This vulnerability tracked as CVE-2024-6333, poses a major danger, totally permitting attackers with administrative net credentials to compromise affected gadgets with root privileges.
Timo Longin from SEC Seek the advice of’s Vienna workplace and Tamas Jos from the Zurich workplace found the vulnerability. It permits an attacker to execute arbitrary instructions on the printer’s working system.
The flaw lies within the “Community Troubleshooting” menu of the online interface, which makes use of the tcpdump device. Inadequate enter validation permits attackers to inject working system instructions into the tcpdump command string by manipulating the IPv4 tackle worth.
Nationwide Cybersecurity Consciousness Month Cyber Challenges – Check your Expertise Now
For example, by setting the IPv4 tackle to “0.0.0.0$(bash $TMP~cmd)”, instructions saved in “/tmp/~cmd” will be executed when initiating a community troubleshooting session.
This exploit will be additional leveraged to determine a reverse shell, granting attackers full entry to the printer’s system.
The vulnerability impacts a number of Xerox printer fashions. Particularly these not up to date to the newest firmware variations.
Xerox WorkCentre 7970 (073.200.167.09610) and WorkCentre 7855 (073.040.167.09610) had been among the many initially examined fashions discovered susceptible.
SEC Seek the advice of has urged Xerox to handle this essential safety concern promptly. Prospects are suggested to put in the newest updates and assessment Xerox’s safety observe XRX24-015 for detailed steering on mitigating this vulnerability.
Moreover, SEC Seek the advice of recommends a complete safety assessment of Xerox merchandise to establish and resolve potential additional safety points.
Xerox, a pacesetter in workplace and manufacturing print expertise with a rising presence in digital and IT providers, has emphasised its dedication to redefining office experiences and empowering consumer success by modern options.
Free Webinar on Tips on how to Defend Small Companies In opposition to Superior Cyberthreats -> Watch Right here