CVE-2021-20679
CVE-2021-20679 is a high-severity vulnerability in Fujixerox Docucentre-vii C7773 Firmware with a CVSS 3.x base score of 7.5. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: High (CVSS 3.x base score 7.5)
- CVSS v2: 7.8
- EPSS exploit prediction: 2% (72nd percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Fujixerox Docucentre-vii C7773 Firmware
- Published:
- Last modified:
Description
Fuji Xerox multifunction devices and printers (DocuCentre-VII C7773/C6673/C5573/C4473/C3373/C3372/C2273, DocuCentre-VII C7788/C6688/C5588, ApeosPort-VII C7773/C6673/C5573/C4473/C3373/C3372 C2273, ApeosPort-VII C7788/C6688/C5588, ApeosPort C7070/C6570/C5570/C4570/C3570/C3070/C7070G/C6570G/C5570G/C4570G/C3570G/C3070G, ApeosPort-VII C4421/C3321, ApeosPort C3060/C2560/C2060/C3060G/C2560G/C2060G, ApeosPort-VII CP4421, ApeosPort Print C5570, ApeosPort 5570/4570/5570G/4570G, ApeosPort 3560/3060/2560/3560G/3060G/2560G, ApeosPort-VII 5021/ 4021, ApeosPort-VII P5021, DocuPrint CP 555 d/505 d, DocuPrint P505 d, PrimeLink C9065/C9070, DocuPrint CP475AP, and DocuPrint P475AP) allow an attacker to cause a denial of service (DoS) condition and abnormal end (ABEND) of the affected products via sending a specially crafted command.
Frequently asked questions
- What is CVE-2021-20679?
- Fuji Xerox multifunction devices and printers (DocuCentre-VII C7773/C6673/C5573/C4473/C3373/C3372/C2273, DocuCentre-VII C7788/C6688/C5588, ApeosPort-VII C7773/C6673/C5573/C4473/C3373/C3372 C2273, ApeosPort-VII C7788/C6688/C5588, ApeosPort C7070/C6570/C5570/C4570/C3570/C3070/C7070G/C6570G/C5570G/C4570G/C3570G/C3070G, ApeosPort-VII C4421/C3321, ApeosPort C3060/C2560/C2060/C3060G/C2560G/C2060G, ApeosPort-VII CP4421, ApeosPort Print C5570, ApeosPort 5570/4570/5570G/4570G, ApeosPort 3560/3060/2560/3560G/3060G/2560G, ApeosPort-VII 5021/ 4021, ApeosPort-VII P5021, DocuPrint CP 555 d/505 d, DocuPrint P505 d, PrimeLink C9065/C9070, DocuPrint CP475AP, and DocuPrint P475AP) allow an attacker to cause a denial of service (DoS) condition and abnormal end (ABEND) of the affected products via sending a specially crafted command.
- How severe is CVE-2021-20679?
- CVE-2021-20679 has a CVSS 3.x base score of 7.5, rated high severity. It is exploitable over network with low attack complexity, requires no privileges and no user interaction. Impact on confidentiality is none, integrity none, and availability high.
- Is CVE-2021-20679 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 2% (72nd percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2021-20679?
- CVE-2021-20679 primarily affects Fujixerox Docucentre-vii C7773 Firmware. In total, 75 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2021-20679?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- When was CVE-2021-20679 published?
- CVE-2021-20679 was published on 2021-03-25 and last updated on 2026-06-17.
References
- https://jvn.jp/en/jp/JVN37607293/index.html
- https://www.fujixerox.co.jp/company/news/notice/2021/0319_announce.html
- https://www.fujixerox.com/eng/company/news/notice/2021/0319_announce.html
Affected products (75)
- cpe:2.3:o:fujixerox:docucentre-vii_c7773_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:docucentre-vii_c6673_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:docucentre-vii_c5573_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:docucentre-vii_c4473_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:docucentre-vii_c3373_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:docucentre-vii_c3372_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:docucentre-vii_c2273_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport_c2570_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_c4422_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_c3322_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport_c2360_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport_c2060_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_cp4422_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_cp3322_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport_print_c4570_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport_3570_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport_1860_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_5022_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_p4022_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:docucentre-vi_c2264_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:docuprint_cp500_d_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:docucentre-vii_c7788_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:docucentre-vii_c6688_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:docucentre-vii_c5588_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_c7773_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_c6673_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_c5573_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_c4473_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_c3373_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_c3372_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_c2273_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_c7788_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_c6688_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport-vii_c5588_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport_c7070_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport_c6570_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport_c5570_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport_c4570_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport_c3570_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:fujixerox:apeosport_c3070_firmware:-:*:*:*:*:*:*:*