Hardcoded credentials

2016-04-2200:59:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

33.4%

JSON

Lexmark printers with firmware ATL before ATL.021.063, CB before CB.021.063, PP before PP.021.063, and YK before YK.021.063 mishandle Erase Printer Memory and Erase Hard Disk actions, which allows physically proximate attackers to obtain sensitive information via direct read operations on non-volatile memory.

CPENameOperatorVersion
printer_firmwareeq>= pp AND <= pp.21.62
printer_firmwareeq>= cb AND <= cb.21.62
printer_firmwareeq>= yk AND <= yk.21.62
printer_firmwareeq>= yk AND <= yk.21.57
printer_firmwareeq>= atl AND <= atl.21.62

Name	Operator	Version
printer_firmware	eq	>= pp AND <= pp.21.62
printer_firmware	eq	>= cb AND <= cb.21.62
printer_firmware	eq	>= yk AND <= yk.21.62
printer_firmware	eq	>= yk AND <= yk.21.57
printer_firmware	eq	>= atl AND <= atl.21.62

References

support.lexmark.com/index?page=content&id=TE760