CVE-2019-18629
First published: Thu Mar 04 2021(Updated: )
Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200 allow an attacker to execute an unwanted binary during a exploited clone install. This requires creating a clone file and signing that file with a compromised private key.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Xerox Altalink B8045 Firmware | <101.008.099.28200 | |
| Xerox AltaLink B8045 | ||
| Xerox Altalink B8055 Firmware | <101.008.099.28200 | |
| Xerox Altalink B8055 | ||
| Xerox Altalink B8065 Firmware | <101.008.099.28200 | |
| Xerox Altalink B8065 | ||
| Xerox Altalink B8075 Firmware | <101.008.099.28200 | |
| Xerox Altalink B8075 | ||
| Xerox Altalink B8090 Firmware | <101.008.099.28200 | |
| Xerox Altalink B8090 | ||
| Xerox Altalink C8030 Firmware | <101.001.099.28200 | |
| Xerox Altalink C8030 | ||
| Xerox Altalink C8035 Firmware | <101.001.099.28200 | |
| Xerox AltaLink C8035 | ||
| Xerox Altalink C8045 Firmware | <101.002.099.28200 | |
| Xerox Altalink C8045 | ||
| Xerox Altalink C8055 Firmware | <101.002.099.28200 | |
| Xerox Altalink C8055 | ||
| Xerox Altalink C8070 Firmware | <101.003.099.28200 | |
| Xerox Altalink C8070 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Xerox printer vulnerability?
The vulnerability ID for this Xerox printer vulnerability is CVE-2019-18629.
What is the severity of CVE-2019-18629?
The severity of CVE-2019-18629 is high with a CVSS score of 8.1.
Which Xerox printer models are affected by CVE-2019-18629?
Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers are affected by CVE-2019-18629.
How can an attacker exploit CVE-2019-18629?
An attacker can exploit CVE-2019-18629 by executing an unwanted binary during an exploited clone install on the affected Xerox printers.
Where can I find more information about CVE-2019-18629?
You can find more information about CVE-2019-18629 in the Xerox security bulletin at https://securitydocs.business.xerox.com/wp-content/uploads/2021/03/cert_Security_Mini_Bulletin_XRX19AI_for_ALB80xx-C80xx_v1.1.pdf.
- collector/nvd-index
- agent/severity
- agent/author
- agent/type
- agent/references
- agent/tags
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/xerox
- canonical/xerox altalink b8045 firmware
- canonical/xerox altalink b8045
- canonical/xerox altalink b8055 firmware
- canonical/xerox altalink b8055
- canonical/xerox altalink b8065 firmware
- canonical/xerox altalink b8065
- canonical/xerox altalink b8075 firmware
- canonical/xerox altalink b8075
- canonical/xerox altalink b8090 firmware
- canonical/xerox altalink b8090
- canonical/xerox altalink c8030 firmware
- canonical/xerox altalink c8030
- canonical/xerox altalink c8035 firmware
- canonical/xerox altalink c8035
- canonical/xerox altalink c8045 firmware
- canonical/xerox altalink c8045
- canonical/xerox altalink c8055 firmware
- canonical/xerox altalink c8055
- canonical/xerox altalink c8070 firmware
- canonical/xerox altalink c8070