CVE-2020-26162: XSS
First published: Fri Oct 09 2020(Updated: )
Xerox WorkCentre EC7836 before 073.050.059.25300 and EC7856 before 073.020.059.25300 devices allow XSS via Description pages.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Xerox Workcentre Ec7836 Firmware | <073.050.059.25300 | |
| Xerox WorkCentre EC7836 | ||
| Xerox Workcentre Ec7856 Firmware | <073.020.059.25300 | |
| Xerox Workcentre Ec7856 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-26162?
CVE-2020-26162 is a vulnerability in Xerox WorkCentre EC7836 and EC7856 devices that allows XSS (Cross-Site Scripting) attacks via Description pages.
What is the severity of CVE-2020-26162?
CVE-2020-26162 has a severity score of 6.1, which is considered medium.
How can I fix CVE-2020-26162?
To fix CVE-2020-26162, it is recommended to update Xerox WorkCentre EC7836 and EC7856 devices to firmware versions 073.050.059.25300 and 073.020.059.25300 respectively.
- collector/nvd-index
- agent/references
- agent/type
- agent/severity
- agent/weakness
- agent/author
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/xerox
- canonical/xerox workcentre ec7836 firmware
- canonical/xerox workcentre ec7836
- canonical/xerox workcentre ec7856 firmware
- canonical/xerox workcentre ec7856