This page lists publicly disclosed CVE vulnerabilities affecting xerox centreware_web (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-1769 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Xerox CentreWare on Windows allows Stored XSS.This issue affects CentreWare: through 7.0.6. Consider upgrading Xerox® CentreWare Web® to v7.2.2.25 via the software available on Xerox.com | 10b61619-3869-496c-8a1e-f291b0e71e3f | 5.3 | 0.15% | 2026-02-06 | 2026-06-17 |
| CVE-2008-3122 | Multiple SQL injection vulnerabilities in Xerox CentreWare Web (CWW) before 4.6.46 allow remote authenticated users to execute arbitrary SQL commands via the unspecified vectors. | [email protected] | 6.5 | 0.90% | 2008-07-10 | 2026-06-16 |
| CVE-2008-3121 | Multiple cross-site scripting (XSS) vulnerabilities in Xerox CentreWare Web (CWW) before 4.6.46 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. | [email protected] | 4.3 | 1.03% | 2008-07-10 | 2026-06-16 |