Summary: A pair of vulnerabilities in Xerox VersaLink C7025 multifunction printers can allow attackers to gain access to an organization’s Windows Active Directory, potentially compromising critical systems. These vulnerabilities, CVE-2024-12510 and CVE-2024-12511, have been patched, but their exploitation could enable credential harvesting through pass-back attacks. Organizations are urged to update their firmware and implement stronger security measures to mitigate risks.
Affected: Xerox VersaLink C7025 multifunction printers
Keypoints :
- Two vulnerabilities were discovered that can lead to full access to an organization’s Windows environment.
- Exploitation allows attackers to capture LDAP and SMB authentication credentials, leading to potential lateral movement within networks.
- Organizations should patch affected devices and implement strong security configurations to reduce vulnerability risks.
Source: https://www.darkreading.com/iot/xerox-printer-vulnerabilities-credential-capture