Multiple vulnerabilities in enterprise-grade Xerox Versalink C7025 multifunction printers (MFPs) enable attackers to intercept authentication credentials from Lightweight Directory Access Protocol (LDAP) and Server Message Block (SMB) services. Designated as CVE-2024-12510 and CVE-2024-12511, these flaws allow malicious actors to execute “pass-back attacks” – a technique that redirects device authentication attempts to attacker-controlled systems. The vulnerabilities, […]
The post Xerox Printers Vulnerability Let Attackers Capture Authentication Data From LDAP & SMB appeared first on Cyber Security News.
This article has been indexed from Cyber Security News