An urgent security update has been released for Xerox FreeFlow Core software, addressing two critical vulnerabilities that could allow attackers to execute remote code and perform server-side request forgery attacks. The vulnerabilities, identified as CVE-2025-8355 and CVE-2025-8356, affect FreeFlow Core version 8.0.4 and require immediate patching to prevent potential exploitation. Security researchers at Horizon3.ai discovered […]
The post Xerox FreeFlow Vulnerabilities leads to SSRF and RCE Attacks appeared first on Cyber Security News.
This article has been indexed from Cyber Security News
Read the original article: