All 7 CVE vulnerabilities found in Xerox Workplace Suite, with AI-generated Chinese analysis, references, and POCs.
Vendor: Xerox
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-55931 | Token stored in session storage CWE-922 | 6.5 | Medium | 2025-01-27 |
| CVE-2024-55930 | Weak default folder permissions CWE-276 | 6.7 | Medium | 2025-01-23 |
| CVE-2024-55929 | Mail spoofing CWE-345 | 5.3 | Medium | 2025-01-23 |
| CVE-2024-55928 | Clear text secrets returned & Remote system secrets in clear text CWE-312 | 6.5 | Medium | 2025-01-23 |
| CVE-2024-55927 | Flawed token generation implementation & Hard-coded key implementation CWE-798 | 7.6 | High | 2025-01-23 |
| CVE-2024-55926 | Arbitrary file upload, deletion and read through header manipulation CWE-434 | 7.6 | High | 2025-01-23 |
| CVE-2024-55925 | API Security bypass through header manipulation CWE-290 | 7.5 | High | 2025-01-23 |
All 7 known CVE vulnerabilities affecting Xerox Workplace Suite with full Chinese analysis, references, and POCs where available.