The information provided here is consistent with the security functional claims made regarding CopyCentre 65/75/90 and WorkCentre Pro 65/75/90 in the Security Target for Common Criteria Certification.
Security Bulletins for Xerox Products
Xerox Security Bulletin XRX05-005 (PDF 37.3K)
Vulnerability in the WorkCentre M35/M45/M55, WorkCentre M165/M175, WorkCentre Pro 32/40 Color, WorkCentre Pro 35/45/55/65/75/90 and WorkCentre Pro C2128/C2636/C3545 Xerox MicroServer Web Server could potentially permit unauthorized access.
Note: The patch applies to launch level software only.
cert_P21_WCP_WebUI_Patch.zip
Critical Security Update for Xerox DocuColor 7000/8000 XPe System Update Software
Critical Security Update for Xerox DocuColor 7000/8000 XPe System Update Software (1H23O1)Version: 1.0
System Updates is a print server service that keeps the system software on your print server up-to-date with the latest Microsoft security updates.
Note: The prerequisite for System Updates functionality is to have patches 1-G88R5, and 1-G6ZLT installed on the Fiery.
Critical Security Update for Xerox DocuColor 6060
Critical Security Update for Xerox DocuColor 6060 XPe System Update Software (1H23O1)Version: 2.2
System Updates is a print server service that keeps the system software on your print server up-to-date with the latest Microsoft security updates.
Note: The prerequisite for System Updates functionality is to have patches 1-G88R5, and 1-G6ZLT installed on the Fiery.
Xerox Security Bulletin XRX05-002 (PDF 23.9K)
Vulnerability in the WorkCentre M24 scanning/faxing software could expose personal information.
Xerox Security Bulletin XRX05-001 (PDF 126.9K)
Vulnerability in the WorkCentre Pro Color 35/40 ESS/ Network Controller could potentially permit unauthorized access.
cert_XRX05_001_patch1.zip
Xerox Security Bulletin XRX04-010 (PDF 41K)
Vulnerability in the WorkCentre M35/M45/M45 and WorkCentre Pro 35/45/55/65/75/90 ESS/ Network Controller could potentially permit unauthorized access.
cert_XRX04_010_patch.zip
Xerox Security Bulletin XRX04-006 (PDF 105.8K)
Vulnerability in the WorkCentre M35/M45/M55, WorkCentre Pro Color 32/40, and WorkCentre Pro 35/45/55 ESS/ Network Controller could cause Immediate Image Overwrite to fail in a specific instance with no indication after an unexpected power loss.
cert_XRX04B_patch.zip
Xerox Security Bulletin XRX04-007 (PDF 103.3K)
Vulnerability in the WorkCentre M35/M45/M55, WorkCentre Pro Color 322/40 and WorkCentre Pro 35/45/55 Xerox MicroServer Web Server could cause a denial of service.
cert_XRX04D_patch.zip
Xerox Security Bulletin XRX04-004 (PDF 99K)
Vulnerability in the WorkCentre M35/M45/M55, WorkCentre Pro Color 32/40, and WorkCentre Pro 35/45/55/65/75/90 ESS/ Network Controller could cause a denial of service.
cert_XRX04-04_patch.zip
Xerox Security Bulletin XRX04-003 (PDF 148.9K)
WorkCentre Multifunction Devices (MFD) WorkCentre M35/M45/M55, WorkCentre Pro Color 32/40 and WorkCentre Pro 35/45/55/65/75/90 PostScript directory traversal patch.
cert_PS_Patch_WCP.zip
Xerox Security Bulletin XRX04-009 (PDF 35.4K)
Vulnerability in the http server on the WorkCentre M35/M45/M55, WorkCentre Pro Color 32/40 and WorkCentrePro 35/45/55/65/75/90 ESS/ Network Controller could potentially permit unauthorized access.
cert_P17_WCP_HTTP_Access_Patch.zip
Xerox Security Bulletin XRX04-002 (PDF 118.3K)
The Document Centre 220/230, Document Centre 240/255/265, Document Centre 332/340, Document Centre 420/425/432/440, Document Centre 460/470/480/490, Document Centre 535/545/555, WorkCentre M35/M45/M55, WorkCentre Pro Color 32/40, contain a Xerox MicroServer Web Server Vulnerability.
cert_HTTP_Patches.zip