How severe is CVE-2018-16709?

CVE-2018-16709 has a severity rating of 9.8, which is considered critical.

How can remote attackers exploit CVE-2018-16709?

Remote attackers can exploit CVE-2018-16709 by sending crafted PJL commands to the vulnerable devices, allowing them to read or write to files.

Is there a fix available for CVE-2018-16709?

To mitigate CVE-2018-16709, it is recommended to apply the latest firmware updates provided by Fuji Xerox for the affected devices.

Vulnerability/
CVE-2018-16709

critical

9.8

7/9/2018

17/9/2024

CVE-2018-16709

First published: Fri Sep 07 2018(Updated: )

Fuji Xerox DocuCentre-V 3065, ApeosPort-VI C3371, ApeosPort-V C4475, ApeosPort-V C3375, DocuCentre-VI C2271, ApeosPort-V C5576, DocuCentre-IV C2263, DocuCentre-V C2263, and ApeosPort-V 5070 devices allow remote attackers to read or write to files via crafted PJL commands.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Fujixerox Docucentre-v 3065 Firmware
Fujixerox Docucentre-v 3065 Firmware
Fujixerox Apeosport-v C4475 Firmware
Fujixerox Apeosport-v C4475 Firmware
Fujixerox Apeosport-vi C3371 Firmware
Fujixerox Apeosport-vi C3371 Firmware
Fujixerox Apeosport-v C3375 Firmware
Fujixerox Apeosport-v C3375 Firmware
Fujixerox Docucentre-vi C2271
Fujixerox Docucentre-vi C2271 Firmware
Fujixerox Apeosport-v C5576
Fujixerox Apeosport-v C5576 Firmware
Fujixerox Docucentre-iv C2263 Firmware
Fujixerox Docucentre-iv C2263 Firmware
Fujixerox Docucentre-v C2263 Firmware
Fujixerox Docucentre-v C2263 Firmware
Fujixerox Apeosport-v 5070 Firmware
Fujixerox Apeosport-v 5070 Firmware

Never miss a vulnerability like this again

Reference Links

https://www.exploit-db.com/exploits/45332/

Frequently Asked Questions

What is CVE-2018-16709?
CVE-2018-16709 is a vulnerability that allows remote attackers to read or write to files via crafted PJL commands on Fuji Xerox DocuCentre and ApeosPort devices.
How severe is CVE-2018-16709?
CVE-2018-16709 has a severity rating of 9.8, which is considered critical.
Which devices are affected by CVE-2018-16709?
Fuji Xerox DocuCentre-V 3065, ApeosPort-VI C3371, ApeosPort-V C4475, ApeosPort-V C3375, DocuCentre-VI C2271, ApeosPort-V C5576, DocuCentre-IV C2263, DocuCentre-V C2263, and ApeosPort-V 5070 devices are affected by CVE-2018-16709.
How can remote attackers exploit CVE-2018-16709?
Remote attackers can exploit CVE-2018-16709 by sending crafted PJL commands to the vulnerable devices, allowing them to read or write to files.
Is there a fix available for CVE-2018-16709?
To mitigate CVE-2018-16709, it is recommended to apply the latest firmware updates provided by Fuji Xerox for the affected devices.

agent/type
agent/softwarecombine
agent/severity
agent/author
agent/references
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/fujixerox
canonical/fujixerox docucentre-v 3065 firmware
canonical/fujixerox apeosport-v c4475 firmware
canonical/fujixerox apeosport-vi c3371 firmware
canonical/fujixerox apeosport-v c3375 firmware
canonical/fujixerox docucentre-vi c2271
canonical/fujixerox docucentre-vi c2271 firmware
canonical/fujixerox apeosport-v c5576
canonical/fujixerox apeosport-v c5576 firmware
canonical/fujixerox docucentre-iv c2263 firmware
canonical/fujixerox docucentre-v c2263 firmware
canonical/fujixerox apeosport-v 5070 firmware

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.