CVE-2023-46327
5.9
Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 2.2 / Impact: 3.6
Source: NVD
Description
Multiple MFPs (multifunction printers) provided by FUJIFILM Business Innovation Corp. and Xerox Corporation provide a facility to export the contents of their Address Book with encrypted form, but the encryption strength is insufficient. With the knowledge of the encryption process and the encryption key, the information such as the server credentials may be obtained from the exported Address Book data. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References].
Affected (130)
Products: Xerox: Primelink C9065 Firmware, Primelink C9070 Firmware, Primelink B9136 Firmware, Primelink B9125 Firmware, Primelink B9110 Firmware, Primelink B9100 Firmware, Versalink C405 Firmware, Versalink C505 Firmware, Versalink C605 Firmware, Versalink C7000 Firmware, Versalink C7020 Firmware, Versalink C7025 Firmware, Versalink C7030 Firmware, Versalink C7130 Firmware, Versalink C7125 Firmware, Versalink C7120 Firmware, Versalink B405 Firmware, Versalink B605 Firmware, Versalink B615 Firmware, Versalink B7125 Firmware, Versalink B7130 Firmware, Versalink B7135 Firmware, Workcentre 6515 Firmware · Fujifilm: Apeos 3560 Firmware, Apeos 3060 Firmware, Apeos 2560 Firmware, Apeos 3560 Gk Firmware, Apeos 3060 Gk Firmware, Apeos 2560 Gk Firmware, Apeos 5330 Firmware, Apeos 4830 Firmware, Apeos 5570 Firmware, Apeos 4570 Firmware, Apeos 6340 Firmware, Apeos 7580 Firmware, Apeos 6580 Firmware, Apeos C2570 Firmware, Apeos C3070 Firmware, Apeos C3570 Firmware, Apeos C4570 Firmware, Apeos C5570 Firmware, Apeos C6570 Firmware, Apeos C7070 Firmware, Apeos C3060 Firmware, Apeos C2060 Firmware, Apeos C2560 Firmware, Apeos C3060 Gk Firmware, Apeos C2560 Gk Firmware, Apeos C2060 Gk Firmware, Apeos C4030 Firmware, Apeos C3530 Firmware, Apeos C5240 Firmware, Apeos C8180 Firmware, Apeos C7580 Firmware, Apeos C6580 Firmware, Apeosport C3060 Firmware, Apeosport C2560 Firmware, Apeosport C2060 Firmware, Apeosport C3060 G Firmware, Apeosport C2560 G Firmware, Apeosport C2060 G Firmware, Apeosport 3560 Firmware, Apeosport 3060 Firmware, Apeosport 2560 Firmware, Apeosport 3560 G Firmware, Apeosport 3060 G Firmware, Apeosport 2560 G Firmware, Apeosport 5570 Firmware, Apeosport 4570 Firmware, Apeosport 3570 Firmware, Apeosport 5570 G Firmware, Apeosport 4570 G Firmware, Apeosport C7070 Firmware, Apeosport C6570 Firmware, Apeosport C5570 Firmware, Apeosport C4570 Firmware, Apeosport C3570 Firmware, Apeosport C3070 Firmware, Apeosport Vii 5021 Firmware, Apeosport Vii 4021 Firmware, Apeosport Vii C4421 Firmware, Apeosport Vii C3321 Firmware, Apeospro C810 Firmware, Apeospro C750 Firmware, Apeospro C650 Firmware, Primelink C9070 Firmware, Primelink C9065 Firmware, Revoria Press E1136 Firmware, Revoria Press E1125 Firmware, Revoria Press E1110 Firmware, Revoria Press E1100 Firmware, Revoria Press Sc180 Firmware, Revoria Press Sc170 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 85.40.31 |
| Running on/with | Platform Versions |
|---|---|
Xerox Primelink C9065 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 85.40.31 |
| Running on/with | Platform Versions |
|---|---|
Xerox Primelink C9070 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 90.40.91 |
| Running on/with | Platform Versions |
|---|---|
Xerox Primelink B9136 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 90.40.91 |
| Running on/with | Platform Versions |
|---|---|
Xerox Primelink B9125 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 90.40.91 |
| Running on/with | Platform Versions |
|---|---|
Xerox Primelink B9110 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 90.40.91 |
| Running on/with | Platform Versions |
|---|---|
Xerox Primelink B9100 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 68.81.41 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink C405 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 68.81.41 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink C505 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 68.81.41 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink C605 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 56.74.51 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink C7000 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 57.74.51 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink C7020 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 57.74.51 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink C7025 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 57.74.51 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink C7030 | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before 69.23.41 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink C7130 | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 69.23.41 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink C7125 | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Before 69.23.41 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink C7120 | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Before 38.81.41 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink B405 | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Before 38.81.41 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink B605 | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Before 38.81.41 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink B615 | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Before 59.23.41 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink B7125 | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Before 59.23.41 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink B7130 | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Before 59.23.41 |
| Running on/with | Platform Versions |
|---|---|
Xerox Versalink B7135 | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Before 65.74.51 |
| Running on/with | Platform Versions |
|---|---|
Xerox Workcentre 6515 | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos 3560 | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos 3060 | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos 2560 | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos 3560 Gk | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos 3060 Gk | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos 2560 Gk | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.20.9 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos 5330 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.20.9 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos 4830 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.6 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos 5570 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.6 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos 4570 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.11 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos 6340 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.26.9 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos 7580 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.26.9 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos 6580 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.7 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C2570 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.7 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C3070 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.7 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C3570 | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.7 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C4570 | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.7 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C5570 | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.7 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C6570 | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.7 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C7070 | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.14 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C3060 | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.14 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C2060 | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.14 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C2560 | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.14 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C3060 Gk | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.14 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C2560 Gk | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.14 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C2060 Gk | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.20.10 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C4030 | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.20.10 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C3530 | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.2.12 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C5240 | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.7 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C8180 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.7 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C7580 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.7 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeos C6580 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.60.15 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport C3060 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.60.15 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport C2560 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.60.15 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport C2060 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.60.15 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport C3060 G | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.60.15 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport C2560 G | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.60.15 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport C2060 G | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport 3560 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport 3060 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport 2560 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport 3560 G | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport 3060 G | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport 2560 G | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport 5570 | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport 4570 | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport 3570 | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport 5570 G | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport 4570 G | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.60.18 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport C7070 | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.60.18 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport C6570 | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.60.18 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport C5570 | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.60.18 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport C4570 | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.60.18 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport C3570 | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.60.18 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport C3070 | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| After 1.60.3 to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport Vii 5021 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| After 1.60.3 to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport Vii 4021 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| After 1.60.3 to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport Vii C4421 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| After 1.60.3 to 1.60.16 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeosport Vii C3321 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.6 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeospro C810 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.6 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeospro C750 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.6 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Apeospro C650 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.145.4 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Primelink C9070 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.145.4 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Primelink C9065 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.5 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Revoria Press E1136 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.5 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Revoria Press E1125 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.5 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Revoria Press E1110 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.0.0 to 1.3.5 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Revoria Press E1100 | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.22.8 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Revoria Press Sc180 | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.22.8 |
| Running on/with | Platform Versions |
|---|---|
Fujifilm Revoria Press Sc170 | All versions |
References (6)
Source: vultures@jpcert.or.jp
Vendor Advisory
Source: vultures@jpcert.or.jp
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.