Critical security vulnerabilities have been identified in Xerox VersaLink C7025 Multifunction Printers (MFPs), potentially enabling attackers to capture authentication credentials through sophisticated pass-back attacks. The vulnerabilities affect firmware versions 57.69.91 and earlier.

Two Notable Vulnerabilities:
– CVE-2024-12510 (CVSS 6.7): Enables pass-back attacks via LDAP
– CVE-2024-12511 (CVSS 7.6): Allows credential theft through user’s address book

Attack Mechanisms:
CVE-2024-12510 permits authentication information redirection to malicious servers when an attacker accesses the LDAP configuration page. CVE-2024-12511 enables attackers to modify SMB or FTP server configurations, redirecting authentication credentials during file scanning operations.

Requirements for Exploitation:
– Physical access to printer console or web interface access
– Administrative privileges (in most cases)
– Configured LDAP authentication or SMB/FTP scan functionality

Mitigation Steps:
1. Update to Service Pack 57.75.53 (released for VersaLink C7020, 7025, and 7030 series)
2. Implement complex admin passwords
3. Avoid using privileged Windows authentication accounts
4. Disable remote-control console for unauthenticated users

Additionally, a separate vulnerability (CVE-2024-56735) was discovered in HealthStream MSOW healthcare software, potentially exposing sensitive data from 23 healthcare organizations through SQL injection attacks.