Xerox FreeFlow Core is affected by a critical path traversal vulnerability that permits unauthenticated remote code execution, posing a severe risk to system integrity and data security.

This flaw involves improper limitation of a pathname to a restricted directory (Path Traversal). It allows an unauthenticated attacker to manipulate file paths to execute arbitrary code on the underlying server.

A successful exploit of this vulnerability could result in a total compromise of the affected server, including unauthorized access to sensitive print workflows and customer data. Given the CVSS score of 9.8, the risk is categorized as Critical, as it allows for remote code execution without requiring any user interaction or prior authentication. This could lead to significant operational downtime and long-term reputational damage.

Immediate Action: Administrators should immediately upgrade Xerox FreeFlow Core to version 8.1.0 or later by downloading the software from the official Xerox support portal.

Proactive Monitoring: Security teams should review web server logs for suspicious directory traversal patterns (e.g., "../" sequences) and monitor for unauthorized file creation in the application directories.

Compensating Controls: Deploying a Web Application Firewall (WAF) with updated path traversal signatures can help mitigate exploitation attempts until the patch is fully deployed.

Public Exploit Available: false

The critical nature of this RCE vulnerability necessitates immediate remediation. It is highly recommended that organizations prioritize the update to FreeFlow Core version 8.1.0 to prevent total system takeover. In the interim, ensure the server is not directly exposed to the public internet unless absolutely necessary.