Unauthenticated Configuration Attribute Modification in Xerox AltaLink B80xx and C80xx Series

Unauthenticated Configuration Attribute Modification in Xerox AltaLink B80xx and C80xx Series

CVE-2021-28669 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 provide the ability to set configuration attributes without administrative rights.

Learn more about our Web Application Penetration Testing UK.