Xerox ColorQube Unspecified Remote Protocol Authorization Bypass (XRX13-008)

Critical Nessus Plugin ID 70660


The remote multi-function device is affected by an authorization bypass vulnerability.


According to its model number and software version, the remote host is a Xerox ColorQube device that is affected by an unspecified, remote protocol authorization bypass vulnerability.


Apply the appropriate cumulative update as described in the Xerox security bulletin in the referenced URL.

See Also

Plugin Details

Severity: Critical

ID: 70660

File Name: xerox_xrx13-008_colorqube.nasl

Version: $Revision: 1.2 $

Type: remote

Family: Misc.

Published: 2013/10/28

Modified: 2016/08/08

Dependencies: 70368

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:ND

Vulnerability Information

CPE: cpe:/h:xerox:colorqube

Required KB Items: www/xerox_colorqube, www/xerox_colorqube/model, www/xerox_colorqube/ssw

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2013/10/21

Vulnerability Publication Date: 2013/10/21

Reference Information

BID: 63270

OSVDB: 98840