Xerox: WorkCentre 3315/3325, Phaser 3320 Affected by Heartbleed Vulnerability
Xerox has reported that two of its MFPs, the WorkCentre 3315/3325, and a printer, the Phaser 3320, have been affected by the “Heartbleed” vulnerability. Heartbleed refers to a vulnerability in the popular OpenSSL cryptographic software library (Version 1.0.1 to 1.0.1f). Essentially with this vulnerability, encrypted data sent over the Internet can be accessed, stolen, and exploited.
While most Xerox products have been investigated and are not affected by Heartbleed, several products are still under investigation. These consist of the:
- Phaser 3160
- WorkCentre 3615
- D95/D110/D125 Copier/Printer
- D136 Copier/Printer and Printer
- Phaser 6010
- Phaser 6500
- Phaser 6600
- Phaser 7100
- WorkCentre 6015
- WorkCentre 6505
- WorkCentre 6605
- Color 560/570 Press
- Color C75/J75 Press
For a complete list of Xerox products and services that have been investigated, visit Xerox here.
Xerox says it will continue with remediation actions recommended by www.OpenSSL.org and other security industry authorities working on this issue.