← Back

CVE-2006-6430

nvd nist
Published: Dec 10, 2006Modified: Apr 23, 2026

JSON object

Loading...
7.8
Vector
AV:N/AC:L/Au:N/C:C/I:N/A:N
Exploitability: 10.0 / Impact: 6.9
Source: NVD

Description

Web services in Xerox WorkCentre and WorkCentre Pro before 12.060.17.000, 13.x before 13.060.17.000, and 14.x before 14.060.17.000 do not require HTTPS, which allows remote attackers to obtain sensitive information by sniffing the unencrypted HTTP traffic.

Affected (12)

Xerox
6 products
Workcentre 232
Workcentre 238
Workcentre 245
Workcentre 255
Workcentre 265
Workcentre 275
Configuration A
12 vulnerable
Vulnerable SoftwareAffected Versions
Xerox
Workcentre 232
All versions
Workcentre 232
All versions
Xerox
Workcentre 238
All versions
Workcentre 238
All versions
Xerox
Workcentre 245
All versions
Workcentre 245
All versions
Xerox
Workcentre 255
All versions
Workcentre 255
All versions
Xerox
Workcentre 265
All versions
Workcentre 265
All versions
Xerox
Workcentre 275
All versions
Workcentre 275
All versions

References (10)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.