high
7.8
CWE
835
Advisory Published
Updated

CVE-2022-23968

First published: Wed Jan 26 2022(Updated: )

Xerox VersaLink devices on specific versions of firmware before 2022-01-26 allow remote attackers to brick the device via a crafted TIFF file in an unauthenticated HTTP POST request. There is a permanent denial of service because image parsing causes a reboot, but image parsing is restarted as soon as the boot process finishes. However, this boot loop can be resolved by a field technician. The TIFF file must have an incomplete Image Directory. Affected firmware versions include xx.42.01 and xx.50.61. NOTE: the 2022-01-24 NeoSmart article included "believed to affect all previous and later versions as of the date of this posting" but a 2022-01-26 vendor statement reports "the latest versions of firmware are not vulnerable to this issue."

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Xerox Versalink Firmware<=42.01
Xerox Versalink Firmware>=50.00<=50.61
Xerox Versalink B400 Firmware
Xerox Versalink B405 Firmware
Xerox Versalink B600 Firmware
Xerox Versalink B610 Firmware
Xerox Versalink B7025 Firmware
Xerox Versalink B7030 Firmware
Xerox Versalink B7035 Firmware
Xerox Versalink C400 Firmware
Xerox Versalink C405 Firmware
Xerox Versalink C500 Firmware
Xerox Versalink C505 Firmware
Xerox Versalink C600 Firmware
Xerox Versalink C605 Firmware
Xerox Versalink C7000 Firmware
Xerox Versalink C7020 Firmware
Xerox Versalink C7025 Firmware
Xerox Versalink C7030
Xerox Versalink C8000 Firmware
Xerox Versalink C8000w Firmware
Xerox Versalink C9000 Firmware

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is CVE-2022-23968?

    CVE-2022-23968 is a vulnerability that allows remote attackers to brick Xerox VersaLink devices via a crafted TIFF file in an unauthenticated HTTP POST request, causing a permanent denial of service.

  • Which devices are affected by CVE-2022-23968?

    Xerox VersaLink devices on specific versions of firmware before 2022-01-26 are affected by CVE-2022-23968.

  • How severe is CVE-2022-23968?

    CVE-2022-23968 has a severity score of 7.5 (High).

  • How can I fix CVE-2022-23968?

    To fix CVE-2022-23968, update the firmware of your Xerox VersaLink device to version 2022-01-26 or later.

  • Where can I find more information about CVE-2022-23968?

    You can find more information about CVE-2022-23968 at the following references: [Reference 1](https://neosmart.net/blog/2022/xerox-vulnerability-allows-unauthenticated-network-users-to-remotely-brick-printers/), [Reference 2](https://twitter.com/mqudsi/status/1485756915187695618)

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203