PT-2025-3156 · Xerox · Xerox Workplace Suite
Published
2025-01-23
·
Updated
2026-02-28
·
CVE-2024-55928
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Xerox Workplace Suite versions prior to 5.6.701.9
Description
The issue allows attackers to intercept or access sensitive secrets without encryption, as they are exposed in clear text both locally and remotely.
Recommendations
For versions prior to 5.6.701.9, update to version 5.6.701.9 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive areas of the system to minimize the risk of exploitation.
Fix
Cleartext Storage of Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Xerox Workplace Suite