{
  "schema_version": "1.4.0",
  "id": "GHSA-vcm3-phm4-6c23",
  "modified": "2022-05-24T17:47:10Z",
  "published": "2022-05-24T17:47:10Z",
  "aliases": [
    "CVE-2019-10881"
  ],
  "details": "Xerox AltaLink B8045/B8055/B8065/B8075/B8090, AltaLink C8030/C8035/C8045/C8055/C8070 with software releases before 103.xxx.030.32000 includes two accounts with weak hard-coded passwords which can be exploited and allow unauthorized access which cannot be disabled.",
  "severity": [],
  "affected": [],
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10881"
    },
    {
      "type": "WEB",
      "url": "https://airbus-seclab.github.io"
    },
    {
      "type": "WEB",
      "url": "https://securitydocs.business.xerox.com/wp-content/uploads/2021/03/cert_Security_Mini_Bulletin_XRX20I_for_ALB80xx-C80xx.pdf"
    }
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-798"
    ],
    "severity": "CRITICAL",
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2021-04-13T21:15:00Z"
  }
}