Weak Hard-Coded Password Vulnerability in Xerox AltaLink and AltaLink C Series

Weak Hard-Coded Password Vulnerability in Xerox AltaLink and AltaLink C Series

CVE-2019-10881 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Xerox AltaLink B8045/B8055/B8065/B8075/B8090, AltaLink C8030/C8035/C8045/C8055/C8070 with software releases before 103.xxx.030.32000 includes two accounts with weak hard-coded passwords which can be exploited and allow unauthorized access which cannot be disabled.

Learn more about our Web Application Penetration Testing UK.