CVE-2020-36201
First published: Thu Jan 21 2021(Updated: )
An issue was discovered in certain Xerox WorkCentre products. They do not properly encrypt passwords. This affects 3655, 3655i, 58XX, 58XXi 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Xerox Workcentre 3655i Firmware | <075.060.000.12010 | |
| Xerox WorkCentre 3655 Firmware | ||
| Xerox Workcentre 3655i Firmware | <075.060.000.12010 | |
| Xerox Workcentre 3655i Firmware | ||
| Xerox Workcentre 5865 Firmware | <075.190.010.12010 | |
| Xerox Workcentre 5865 Firmware | ||
| Xerox Workcentre 5875 Firmware | <075.190.010.12010 | |
| Xerox Workcentre 5875 Firmware | ||
| Xerox Workcentre 5890i Firmware | <075.190.010.12010 | |
| Xerox Workcentre 5890i Firmware | ||
| Xerox Workcentre 5865 Firmware | <075.190.010.12010 | |
| Xerox Workcentre 5865 | ||
| Xerox Workcentre 5875 Firmware | <075.190.010.12010 | |
| Xerox Workcentre 5875 Firmware | ||
| Xerox Workcentre 5945i Firmware | <075.091.010.12010 | |
| Xerox Workcentre 5945 Firmware | ||
| Xerox Workcentre 5955 Firmware | <075.091.010.12010 | |
| Xerox Workcentre 5955i | ||
| Xerox Workcentre 5945 Firmware | <075.091.010.12010 | |
| Xerox Workcentre 5945i Firmware | ||
| Xerox Workcentre 5955 Firmware | <075.091.010.12010 | |
| Xerox Workcentre 5955i Firmware | ||
| Xerox Workcentre 6655i Firmware | <075.110.010.12010 | |
| Xerox Workcentre 6655 Firmware | ||
| Xerox Workcentre 6655 Firmware | <075.110.010.12010 | |
| Xerox Workcentre 6655 Firmware | ||
| Xerox Workcentre 7220 Firmware | <075.030.000.12010 | |
| Xerox Workcentre 7220i Firmware | ||
| Xerox Workcentre 7225i Firmware | <075.030.000.12010 | |
| Xerox Workcentre 7225i Firmware | ||
| Xerox Workcentre 7220 Firmware | <075.030.000.12010 | |
| Xerox Workcentre 7220i Firmware | ||
| Xerox Workcentre 7225 Firmware | <075.030.000.12010 | |
| Xerox Workcentre 7225i Firmware | ||
| Xerox Workcentre 7830i Firmware | <075.010.000.12010 | |
| Xerox Workcentre 7830i Firmware | ||
| Xerox Workcentre 7835 Firmware | <075.010.000.12010 | |
| Xerox Workcentre 7835i Firmware | ||
| Xerox Workcentre 7845i Firmware | <075.040.000.12010 | |
| Xerox Workcentre 7845i Firmware | ||
| Xerox Workcentre 7855 Firmware | <075.040.000.12010 | |
| Xerox Workcentre 7855i | ||
| Xerox Workcentre 7830 Firmware | <075.010.000.12010 | |
| Xerox Workcentre 7830 Firmware | ||
| Xerox Workcentre 7835 Firmware | <075.010.000.12010 | |
| Xerox Workcentre 7835i | ||
| Xerox Workcentre 7845i Firmware | <075.040.000.12010 | |
| Xerox Workcentre 7845 | ||
| Xerox Workcentre 7855i | <075.040.000.12010 | |
| Xerox Workcentre 7855 Firmware | ||
| Xerox Workcentre 7970i Firmware | <075.200.000.12010 | |
| Xerox Workcentre 7970i | ||
| Xerox Workcentre 7970 Firmware | <075.200.000.12010 | |
| Xerox Workcentre 7970 | ||
| Xerox Workcentre Ec7836 Firmware | <075.050.010.12010 | |
| Xerox WorkCentre EC7836 | ||
| Xerox Workcentre Ec7856 Firmware | <075.020.010.12010 | |
| Xerox Workcentre Ec7856 Firmware | ||
| Xerox Workcentre 5890i Firmware | <075.190.010.12010 | |
| Xerox Workcentre 5890i Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-36201?
CVE-2020-36201 has a severity rating that is categorized as an information exposure vulnerability due to insufficient password encryption.
How do I fix CVE-2020-36201?
To fix CVE-2020-36201, it is recommended to update the firmware of affected Xerox WorkCentre devices to the latest version that addresses this vulnerability.
What devices are affected by CVE-2020-36201?
CVE-2020-36201 affects various Xerox WorkCentre products including models 3655, 5865, 6655, 7970, and several others as listed in the vulnerability details.
Can CVE-2020-36201 lead to a security breach?
Yes, CVE-2020-36201 can potentially lead to a security breach by exposing sensitive passwords due to the lack of proper encryption.
Is CVE-2020-36201 a common vulnerability?
CVE-2020-36201 is considered a common vulnerability as it affects widely used Xerox products that are deployed in various organizations.
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/remedy
- agent/type
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/xerox
- canonical/xerox workcentre 3655i firmware
- canonical/xerox workcentre 3655 firmware
- canonical/xerox workcentre 5865 firmware
- canonical/xerox workcentre 5875 firmware
- canonical/xerox workcentre 5890i firmware
- canonical/xerox workcentre 5865
- canonical/xerox workcentre 5945i firmware
- canonical/xerox workcentre 5945 firmware
- canonical/xerox workcentre 5955 firmware
- canonical/xerox workcentre 5955i
- canonical/xerox workcentre 5955i firmware
- canonical/xerox workcentre 6655i firmware
- canonical/xerox workcentre 6655 firmware
- canonical/xerox workcentre 7220 firmware
- canonical/xerox workcentre 7220i firmware
- canonical/xerox workcentre 7225i firmware
- canonical/xerox workcentre 7225 firmware
- canonical/xerox workcentre 7830i firmware
- canonical/xerox workcentre 7835 firmware
- canonical/xerox workcentre 7835i firmware
- canonical/xerox workcentre 7845i firmware
- canonical/xerox workcentre 7855 firmware
- canonical/xerox workcentre 7855i
- canonical/xerox workcentre 7830 firmware
- canonical/xerox workcentre 7835i
- canonical/xerox workcentre 7845
- canonical/xerox workcentre 7970i firmware
- canonical/xerox workcentre 7970i
- canonical/xerox workcentre 7970 firmware
- canonical/xerox workcentre 7970
- canonical/xerox workcentre ec7836 firmware
- canonical/xerox workcentre ec7836
- canonical/xerox workcentre ec7856 firmware