Unrated severityNVD Advisory· Published Feb 6, 2026· Updated Feb 6, 2026

Stored XSS on Xerox CentreWare Web 7.0.6

CVE-2026-1769

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Xerox CentreWare on Windows allows Stored XSS.This issue affects CentreWare: through 7.0.6.

Consider upgrading Xerox® CentreWare Web® to v7.2.2.25 via the software available on Xerox.com

Affected products

Xerox/Centreware Webllm-fuzzy
Range: <=7.0.6
Xerox/CentreWarev5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

securitydocs.business.xerox.com/wp-content/uploads/2026/02/Xerox-Security-Bulletin-XRX26-003-for-Xerox-CentreWare-Web.pdfmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000