Xerox
Security Risk Profile
54
/100
mediumSecurity Risk Score
Comprehensive risk assessment based on 121 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from October 13, 1999 to present
121
Total CVEs
69
Critical+High
0
Exploited
45
Unpatched
Threat Assessment
Avg CVSS
7.3
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
45
Critical/High
Risk Level
54/100
medium
Severity Distribution
Critical
33High
36Medium
50Low
1Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
2Age Distribution
Common Weaknesses (CWE)
1
XSS
13
2
Path Traversal
8
3
Buffer Overflow
8
4
SQL Injection
5
5
Command Injection
5
Most Affected Products
1. Xerox WorkCentre113
2. Xerox Workcentre 25524
3. Xerox Workcentre 24524
4. Xerox Workcentre 23824
5. Xerox Workcentre 23224
Recent Vulnerabilities
See more →CVE-2026-2252
CVSS 7.5high
XML External Entity (XXE) vulnerability resulting in Server-Side Request Forgery (SSRF)
2/27/2026🔧 No Patch
CVE-2026-2251
CVSS 9.8critical
Path Traversal leading to Remote Code Execution (RCE)
2/27/2026🔧 No Patch
CVE-2026-1769
CVSS 5.4medium
Stored XSS on Xerox CentreWare Web 7.0.6
2/6/2026🔧 No Patch
CVE-2025-8356
CVSS 9.8EPSS 0%critical
Path Traversal leading to RCE
8/8/2025🔧 No Patch
CVE-2025-8355
CVSS 7.5EPSS 0%high
XXE leading to SSRF
8/8/2025🔧 No Patch
CVE-2025-1984
CVSS 5.2medium
Local Privilege Escalation on Xerox® Desktop Print Experience® v8.5
3/12/2025🔧 No Patch
https://www.darkreading.com/iot/xerox-printer-vulnerabilities-credential-capture
unknown
Xerox Printer Vulnerabilities Enable Credential Capture
2/18/2025🔧 No Patch
CVE-2024-55931
CVSS 6.5medium
Token stored in session storage
1/27/2025🔧 No Patch
CVE-2024-55930
CVSS 9.8critical
Weak default folder permissions
1/23/2025🔧 No Patch
CVE-2024-55929
CVSS 5.3medium
Mail spoofing
1/23/2025🔧 No Patch
Monitor Xerox in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.