Primary

Context

Xerox Workplace Suite Arbitrary File Read, Upload, and Deletion Vulnerability via Header Manipulation

Vulnerability

A vulnerability in Xerox Workplace Suite allows unauthorized arbitrary file read, upload, and deletion on the server through manipulated headers. This exploitation takes advantage of improper header validation, granting attackers access to sensitive data.

Impact

Exploitation of this vulnerability could lead to unauthorized access to files on the server, allowing for arbitrary file reading, uploading, and deletion.

Remediation

Users can upgrade to Xerox Workplace Suite version 5.6.701.9 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.6

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.6

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Xerox Workplace Suite Arbitrary File Read, Upload, and Deletion Vulnerability via Header Manipulation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating