CVE-2005-2647

CVE-2005-2647 is a medium-severity vulnerability in Xerox Document Centre 265 with a CVSS 2.0 base score of 4.3. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.

Key facts

Description

Cross-site scripting (XSS) vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to inject arbitrary web script or HTML and modify web pages via unknown vectors.

Frequently asked questions

What is CVE-2005-2647?
Cross-site scripting (XSS) vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to inject arbitrary web script or HTML and modify web pages via unknown vectors.
How severe is CVE-2005-2647?
CVE-2005-2647 has a CVSS 2.0 base score of 4.3, rated medium severity.
Is CVE-2005-2647 being actively exploited?
It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 2% (76th percentile), an estimate of the probability of exploitation in the next 30 days.
What products are affected by CVE-2005-2647?
CVE-2005-2647 primarily affects Xerox Document Centre 265. In total, 7 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
How do I fix CVE-2005-2647?
Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
When was CVE-2005-2647 published?
CVE-2005-2647 was published on 2005-08-23 and last updated on 2026-06-16.

References

Affected products (7)

More vulnerabilities in Xerox Document Centre 265

All CVEs affecting Xerox Document Centre 265 →