CVE-2024-47555

CVSS 3.1 Score 8.3 of 10 (high)

Details

Published Oct 7, 2024
Updated: Oct 10, 2024
CWE ID 306

Summary

CVE-2024-47555 identifies a high-severity vulnerability resulting from missing authentication in various Xerox products, including models labeled as zSbeAn, zSbioq, and others within the same product line. The vulnerability allows potential attackers on an adjacent network to exploit the system without requiring any privileges or user interaction, leading to significant risks for confidentiality, integrity, and availability. Remediation measures are recommended in the Xerox Security Bulletin XRX24-014, which provides guidance for affected users to secure their systems. With a CVSS base score of 8.3 and an exploitability score of 1.6, organizations must prioritize addressing this vulnerability to mitigate potential data breaches or system compromises. The threat is classified under CWE-306 for missing authentication on critical functions, emphasizing its seriousness in cybersecurity contexts.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share