CVE-2026-1769: Stored XSS on Xerox CentreWare Web 7.0.6

Q: What is the severity of CVE-2026-1769?

CVE-2026-1769 is classified as a medium severity vulnerability due to its potential for exploitation through stored cross-site scripting.

Q: How do I fix CVE-2026-1769?

To fix CVE-2026-1769, upgrade Xerox CentreWare Web to version 7.2.2.25 or later.

Q: What is the impact of CVE-2026-1769?

The impact of CVE-2026-1769 includes the possibility for attackers to execute arbitrary scripts in the context of users' browsers, which can lead to data theft or session hijacking.

Q: Which versions of Xerox CentreWare are affected by CVE-2026-1769?

CVE-2026-1769 affects all versions of Xerox CentreWare Web up to and including 7.0.6.

Q: Is there a workaround for CVE-2026-1769 if I can't update the software?

There are no effective workarounds for CVE-2026-1769; upgrading to a secure version is the recommended solution.

Published Feb 6, 2026

Updated

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Xerox CentreWare on Windows allows Stored XSS.This issue affects CentreWare: through 7.0.6. Consider upgrading Xerox® CentreWare Web® to v7.2.2.25 via the software available on Xerox.com

Affected Software

3 affected components

Xerox CentreWare<=7.0.6

All of the following

Xerox CentreWare Web<=7.0.6

Microsoft Windows

Event History

Feb 6, 2026

CVE Published

via MITRE·05:19 PM

Data Sourced

via MITRE·05:19 PM

DescriptionSeverityWeakness

Data Sourced

via NVD·06:15 PM

DescriptionSeverityWeaknessAffected Software

Frequently Asked Questions

What is the severity of CVE-2026-1769?

CVE-2026-1769 is classified as a medium severity vulnerability due to its potential for exploitation through stored cross-site scripting.

How do I fix CVE-2026-1769?

To fix CVE-2026-1769, upgrade Xerox CentreWare Web to version 7.2.2.25 or later.

What is the impact of CVE-2026-1769?

The impact of CVE-2026-1769 includes the possibility for attackers to execute arbitrary scripts in the context of users' browsers, which can lead to data theft or session hijacking.

Which versions of Xerox CentreWare are affected by CVE-2026-1769?

CVE-2026-1769 affects all versions of Xerox CentreWare Web up to and including 7.0.6.

Is there a workaround for CVE-2026-1769 if I can't update the software?

There are no effective workarounds for CVE-2026-1769; upgrading to a secure version is the recommended solution.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.