Xerox has another data security issue
- the Cybersecurity and Infrastructure Security Agency (CISA) issued a security bulletin warning customers using Xerox’s DocuShare of a security vulnerability
- users are instructed to apply a patch to plug 2 security holes
- vulnerabilities open Solaris, Linux and Windows DucuShare users up to both a server-side request forgery (SSRF) attack and an unauthenticated external XML entity injection attack (XXE)