CVE-2019-13166

Name of the Vulnerable Software and Affected Versions: Xerox printers (affected versions not specified)

Description: The issue concerns the lack of account lockout implementation in some Xerox printers, allowing local account credentials to be extracted via brute force guessing attacks.

Recommendations: For affected Xerox printer models, consider implementing account lockout policies to prevent brute force guessing attacks. As a temporary workaround, restrict access to the device to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.