CVE-2024-55930

  1. Yack CVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-55930

6.7 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

X

erox Workplace Suite has weak default folder permissions that allow unauthorized users to access, modify, or delete files

References
Link Resource
https://securitydocs.business.xerox.com/wp-content/uploads/2025/01/Xerox-Security-Bulletin-XRX25-002-for-Xerox%C2%AE-WorkplaceSuite%C2%AE.pdf Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:xerox:workplace_suite:*:*:*:*:*:*:*:*
History

30 Jan 2026, 21:30

Type Values Removed Values Added
CPE cpe:2.3:a:xerox:workplace_suite:*:*:*:*:*:*:*:*
First Time Xerox workplace Suite
Xerox
References () https://securitydocs.business.xerox.com/wp-content/uploads/2025/01/Xerox-Security-Bulletin-XRX25-002-for-Xerox%C2%AE-WorkplaceSuite%C2%AE.pdf - () https://securitydocs.business.xerox.com/wp-content/uploads/2025/01/Xerox-Security-Bulletin-XRX25-002-for-Xerox%C2%AE-WorkplaceSuite%C2%AE.pdf - Vendor Advisory

24 Feb 2025, 18:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 6.6 		v2 : unknown
v3 : 6.7

29 Jan 2025, 12:15

Type Values Removed Values Added
References
  • {'url': 'https://securitydocs.business.xerox.com/wp-content/uploads/2025/01/Xerox-Security-Bulletin-XRX25-002-for-Xerox%C2%AE-Workplace-Suite%C2%AE.pdf', 'source': '10b61619-3869-496c-8a1e-f291b0e71e3f'}
  • () https://securitydocs.business.xerox.com/wp-content/uploads/2025/01/Xerox-Security-Bulletin-XRX25-002-for-Xerox%C2%AE-WorkplaceSuite%C2%AE.pdf -

27 Jan 2025, 12:15

Type Values Removed Values Added
Summary
  • (es) Permisos de carpeta predeterminados débiles
Summary (en) Weak default folder permissions (en) Xerox Workplace Suite has weak default folder permissions that allow unauthorized users to access, modify, or delete files

23 Jan 2025, 18:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-01-23 18:15

Updated : 2026-01-30 21:30

NVD link : CVE-2024-55930

Mitre link : CVE-2024-55930

CVE.ORG link : CVE-2024-55930

JSON object : View

Products Affected

xerox

CWE
CWE-276

Incorrect Default Permissions