Xerox Update
1688Warning Date
Severity Level
Warning Number
Target Sector
6 December, 2020
● High
2020-2147
All
Description:
Xerox has released security update to address a vulnerability in the following products:
- DocuShare 7.5 - DocuShare 7.5 Hotfix 2
- DocuShare 7.0 - DocuShare 7.0.0 Update 1 Patch 3 Hotfix 22
- DocuShare 6.6.1 - DocuShare 661 Update 3 Patch 4 Hotfix 9
Threats:
An attacker could exploit the vulnerability by doing the following:
- Code injection
- Cross-site request forgery (CSRF)
Best practice and Recommendations:
The CERT team encourages users to review Xerox security advisory and apply the necessary updates: