Lucene search

[email protected]NVD:CVE-2023-26067

HistoryApr 10, 2023 - 8:15 p.m.

CVE-2023-26067

2023-04-1020:15:10

CWE-20

[email protected]

web.nvd.nist.gov

lexmark devices

input validation

issue

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

8.1 High

AI Score

Confidence

High

0.17 Low

EPSS

Percentile

96.1%

JSON

Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 1 of 4).

Affected configurations

NVD

Node

lexmarkcxtpc_firmwareRange<cxtpc.081.232

AND

lexmarkcx930Match-

lexmarkcx931Match-

lexmarkcx942Match-

lexmarkcx943Match-

lexmarkcx944Match-

lexmarkxc9325Match-

lexmarkxc9335Match-

lexmarkxc9445Match-

lexmarkxc9455Match-

lexmarkxc9465Match-

Node

lexmarkcstpc_firmwareRange<cstpc.081.232

AND

lexmarkcs943Match-

Node

lexmarkmxtct_firmwareRange<mxtct.081.232

AND

lexmarkmx432Match-

lexmarkxm3142Match-

Node

lexmarkmxtpm_firmwareRange<mxtpm.081.232

AND

lexmarkmx931Match-

Node

lexmarkcxtmm_firmwareRange<cxtmm.081.232

AND

lexmarkcx730Match-

lexmarkcx735Match-

lexmarkxc4342Match-

lexmarkxc4352Match-

Node

lexmarkmslsg_firmwareRange<mslsg.081.232

AND

lexmarkb2236Match-

Node

lexmarkmxlsg_firmwareRange<mxlsg.081.232

AND

lexmarkmb2236Match-

Node

lexmarkmslbd_firmwareRange<mslbd.081.232

AND

lexmarkb3340Match-

lexmarkb3442Match-

lexmarkm1342Match-

lexmarkms331Match-

lexmarkms431Match-

lexmarkms439Match-

Node

lexmarkmxlbd_firmwareRange<mxlbd.081.232

AND

lexmarkmb3442Match-

lexmarkmx331Match-

lexmarkmx431Match-

lexmarkxm1342Match-

Node

lexmarkmsngm_firmwareRange<msngm.081.232

AND

lexmarkb2338Match-

lexmarkb2442Match-

lexmarkb2546Match-

lexmarkb2650Match-

lexmarkm1242Match-

lexmarkm1246Match-

lexmarkm3250Match-

lexmarkms321Match-

lexmarkms421Match-

lexmarkms521Match-

lexmarkms621Match-

lexmarkms622Match-

Node

lexmarkmxngm_firmwareRange<mxngm.081.232

AND

lexmarkmb2338Match-

lexmarkmx321Match-

Node

lexmarkmxtgm_firmwareRange<mxtgm.081.232

AND

lexmarkmb2442Match-

lexmarkmb2546Match-

lexmarkmb2650Match-

lexmarkmx421Match-

lexmarkmx521Match-

lexmarkmx522Match-

lexmarkmx622Match-

lexmarkxm1242Match-

lexmarkxm1246Match-

lexmarkxm3250Match-

Node

lexmarkmsngw_firmwareRange<msngw.081.232

AND

lexmarkb2865Match-

lexmarkms725Match-

lexmarkms821Match-

lexmarkms823Match-

lexmarkms825Match-

Node

lexmarkmstgw_firmwareRange<mstgw.081.232

AND

lexmarkm5255Match-

lexmarkm5270Match-

lexmarkms822Match-

lexmarkms826Match-

Node

lexmarkmxtgw_firmwareRange<mxtgw.081.232

AND

lexmarkmb2770Match-

lexmarkmx721Match-

lexmarkmx722Match-

lexmarkmx725Match-

lexmarkmx822Match-

lexmarkmx826Match-

lexmarkxm5365Match-

lexmarkxm5370Match-

lexmarkxm7355Match-

lexmarkxm7370Match-

Node

lexmarkcslbn_firmwareRange<cslbn.081.232

AND

lexmarkc3426Match-

lexmarkcs431Match-

lexmarkcs439Match-

Node

lexmarkcslbl_firmwareRange<cslbl.081.232

AND

lexmarkc3224Match-

lexmarkc3326Match-

lexmarkcs331Match-

Node

lexmarkcslbn_firmwareRange<cslbn.081.232

AND

lexmarkc2326Match-

Node

lexmarkcxlbn_firmwareRange<cxlbn.081.232

AND

lexmarkcx431Match-

lexmarkmc3426Match-

lexmarkxc2326Match-

Node

lexmarkcxlbl_firmwareRange<cxlbl.081.232

AND

lexmarkmc3224Match-

lexmarkmc3326Match-

Node

lexmarkcsnzj_firmwareRange<csnzj.081.232

AND

lexmarkc2325Match-

lexmarkc2425Match-

lexmarkc2535Match-

lexmarkcs421Match-

lexmarkcs521Match-

Node

lexmarkcxtzj_firmwareRange<cxtzj.081.232

AND

lexmarkcx522Match-

lexmarkcx622Match-

lexmarkcx625Match-

lexmarkmc2535Match-

lexmarkmc2640Match-

lexmarkxc2235Match-

lexmarkxc4240Match-

Node

lexmarkcxnzj_firmwareRange<cxnzj.081.232

AND

lexmarkcx421Match-

lexmarkmc2325Match-

lexmarkmc2425Match-

Node

lexmarkcxtpp_firmwareRange<cxtpp.081.233

AND

lexmarkcx820Match-

lexmarkcx825Match-

lexmarkcx827Match-

lexmarkcx86Match-

lexmarkxc6152Match-

lexmarkxc6153Match-

lexmarkxc8155Match-

lexmarkxc8160Match-

lexmarkxc8163Match-

Node

lexmarkcxtpp_firmwareRange<cstpp.081.233

AND

lexmarkc6160Match-

lexmarkcs820Match-

lexmarkcs827Match-

Node

lexmarkcstat_firmwareRange<cstat.081.233

AND

lexmarkc4150Match-

lexmarkcs720Match-

lexmarkcs725Match-

lexmarkcs727Match-

lexmarkcs728Match-

Node

lexmarkcxtat_firmwareRange<cxtat.081.233

AND

lexmarkcx725Match-

lexmarkcx727Match-

lexmarkxc4140Match-

lexmarkxc4143Match-

lexmarkxc4150Match-

lexmarkxc4153Match-

Node

lexmarkcstmh_firmwareRange<cstmh.081.233

AND

lexmarkcs921Match-

lexmarkcs923Match-

lexmarkcs927Match-

Node

lexmarkcstmh_firmwareRange<cstmx.081.233

AND

lexmarkc923Match-

lexmarkcx920Match-

lexmarkcx921Match-

lexmarkcx922Match-

lexmarkcx923Match-

lexmarkcx924Match-

lexmarkxc9225Match-

lexmarkxc9235Match-

lexmarkxc9245Match-

lexmarkxc9255Match-

lexmarkxc9265Match-

References

packetstormsecurity.com/files/174763/Lexmark-Device-Embedded-Web-Server-Remote-Code-Execution.html

publications.lexmark.com/publications/security-alerts/CVE-2023-26067.pdf

support.lexmark.com/alerts/

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

8.1 High

AI Score

Confidence

High

0.17 Low

EPSS

Percentile

96.1%

JSON

Related for NVD:CVE-2023-26067

cve1 cvelist1 prion1 zdi3 nuclei1 githubexploit2 packetstorm1 openvas1 metasploit1 zdt1