Lucene search

MitreCVE-2011-4538

HistoryMar 09, 2020 - 7:15 p.m.

CVE-2011-4538

2020-03-0919:15:11

CWE-200

mitre

web.nvd.nist.gov

cve-2011-4538

lexmark

sensitive information exposure

password disclosure

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

AI Score

5.1

Confidence

High

EPSS

0.001

Percentile

35.9%

JSON

Lexmark X, W, T, E, and C devices before 2012-02-09 allow attackers to obtain sensitive information by reading passwords within exported settings.

Affected configurations

Nvd

Node

lexmarkx860_firmwareRange≤lp.sp.p108

AND

lexmarkx860Match-

Node

lexmarkx862_firmwareRange≤lp.sp.p108

AND

lexmarkx862Match-

Node

lexmarkx864_firmwareRange≤lp.sp.p108

AND

lexmarkx864Match-

Node

lexmarkx734_firmwareRange≤lr.fl.p224c

AND

lexmarkx734Match-

Node

lexmarkx736_firmwareRange≤lr.fl.p224c

AND

lexmarkx736Match-

Node

lexmarkx738_firmwareRange≤lr.fl.p224c

AND

lexmarkx738Match-

Node

lexmarkx651_firmwareRange≤lr.mn.p224a

AND

lexmarkx651Match-

Node

lexmarkx652_firmwareRange≤lr.mn.p224a

AND

lexmarkx652Match-

Node

lexmarkx654_firmwareRange≤lr.mn.p224a

AND

lexmarkx654Match-

Node

lexmarkx656_firmwareRange≤lr.mn.p224a

AND

lexmarkx656Match-

Node

lexmarkx658_firmwareRange≤lr.mn.p224a

AND

lexmarkx658Match-

Node

lexmarkx543_firmwareRange≤ll.el.p511

AND

lexmarkx543Match-

Node

lexmarkx544_firmwareRange≤ll.el.p511

AND

lexmarkx544Match-

Node

lexmarkx546_firmwareRange≤ll.el.p511

AND

lexmarkx546Match-

Node

lexmarkx463_firmwareRange≤lr.bs.p224a

AND

lexmarkx463Match-

Node

lexmarkx464_firmwareRange≤lr.bs.p224a

AND

lexmarkx464Match-

Node

lexmarkx466_firmwareRange≤lr.bs.p224a

AND

lexmarkx466Match-

Node

lexmarkx363_firmwareRange≤ll.bz.p511

AND

lexmarkx363Match-

Node

lexmarkx364_firmwareRange≤ll.bz.p511

AND

lexmarkx364Match-

Node

lexmarkw850_firmwareRange≤lp.jb.p108

AND

lexmarkw850Match-

Node

lexmarkt650_firmwareRange≤lr.jp.p224a

AND

lexmarkt650Match-

Node

lexmarkt652_firmwareRange≤lr.jp.p224a

AND

lexmarkt652Match-

Node

lexmarkt654_firmwareRange≤lr.jp.p224a

AND

lexmarkt654Match-

Node

lexmarke460_firmwareRange≤lr.lbh.p224a

AND

lexmarke460Match-

Node

lexmarke462_firmwareRange≤lr.lbh.p224a

AND

lexmarke462Match-

Node

lexmarke360_firmwareRange≤ll.lbm.p511

AND

lexmarke360Match-

Node

lexmarke260_firmwareRange≤ll.lbl.p511

AND

lexmarke260Match-

Node

lexmarkc734_firmwareRange≤lr.sk.p224a

AND

lexmarkc734Match-

Node

lexmarkc736_firmwareRange≤lr.sk.p224a

AND

lexmarkc736Match-

Node

lexmarkc546_firmwareRange≤lu.as.p511

AND

lexmarkc546Match-

Node

lexmarkc540_firmwareRange≤ll.as.p511

AND

lexmarkc540Match-

Node

lexmarkc543_firmwareRange≤ll.as.p511

AND

lexmarkc543Match-

Node

lexmarkc544_firmwareRange≤ll.as.p511

AND

lexmarkc544Match-

VendorProductVersionCPE
lexmarkx860_firmware*cpe:2.3:o:lexmark:x860_firmware:*:*:*:*:*:*:*:*
lexmarkx860-cpe:2.3:h:lexmark:x860:-:*:*:*:*:*:*:*
lexmarkx862_firmware*cpe:2.3:o:lexmark:x862_firmware:*:*:*:*:*:*:*:*
lexmarkx862-cpe:2.3:h:lexmark:x862:-:*:*:*:*:*:*:*
lexmarkx864_firmware*cpe:2.3:o:lexmark:x864_firmware:*:*:*:*:*:*:*:*
lexmarkx864-cpe:2.3:h:lexmark:x864:-:*:*:*:*:*:*:*
lexmarkx734_firmware*cpe:2.3:o:lexmark:x734_firmware:*:*:*:*:*:*:*:*
lexmarkx734-cpe:2.3:h:lexmark:x734:-:*:*:*:*:*:*:*
lexmarkx736_firmware*cpe:2.3:o:lexmark:x736_firmware:*:*:*:*:*:*:*:*
lexmarkx736-cpe:2.3:h:lexmark:x736:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
lexmark	x860_firmware	*	cpe:2.3:o:lexmark:x860_firmware::::::::
lexmark	x860	-	cpe:2.3:h:lexmark:x860:-:::::::*
lexmark	x862_firmware	*	cpe:2.3:o:lexmark:x862_firmware::::::::
lexmark	x862	-	cpe:2.3:h:lexmark:x862:-:::::::*
lexmark	x864_firmware	*	cpe:2.3:o:lexmark:x864_firmware::::::::
lexmark	x864	-	cpe:2.3:h:lexmark:x864:-:::::::*
lexmark	x734_firmware	*	cpe:2.3:o:lexmark:x734_firmware::::::::
lexmark	x734	-	cpe:2.3:h:lexmark:x734:-:::::::*
lexmark	x736_firmware	*	cpe:2.3:o:lexmark:x736_firmware::::::::
lexmark	x736	-	cpe:2.3:h:lexmark:x736:-:::::::*

Rows per page:

1-10 of 661

References

contentdelivery.lexmark.com/webcontent/CVE-2011-4538.pdf

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

AI Score

5.1

Confidence

High

EPSS

0.001

Percentile

35.9%

JSON

Related for CVE-2011-4538