CVE-2025-4046 Missing Authorization in Lexmark Cloud Services badge management

A missing authorization vulnerability in Lexmark Cloud Services badge management allows attacker to reassign badges within their organization...

CVE-2025-4046

CVE-2025-4046 describes a Missing Authorization vulnerability in Lexmark Cloud Services badge management that could allow reassigning badges within an organization. Affected surface: Lexmark Cloud Services badge management component; root cause: insufficient access control enabling unauthorized r...

CVE-2025-4044 XML External Entity Injection vulnerability in various Lexmark Universal Drivers

Improper Restriction of XML External Entity Reference in various Lexmark printer drivers for Windows allows attacker to disclose sensitive information to an arbitrary URL...

CVE-2025-4044

Improper Restriction of XML External Entity Reference in various Lexmark printer drivers for Windows allows attacker to disclose sensitive information to an arbitrary URL...

CVE-2025-4044

CVE-2025-4044 affects Lexmark printer drivers (notably the Lexmark Universal Print Driver) for Windows. The issue is an improper restriction of XML External Entity (XXE) references in the driver’s handling of XML, allowing an attacker to disclose sensitive information to an arbitrary URL. The CVE...

CVE-2025-4044 XML External Entity Injection vulnerability in various Lexmark Universal Drivers

Improper Restriction of XML External Entity Reference in various Lexmark printer drivers for Windows allows attacker to disclose sensitive information to an arbitrary URL...

Lexmark Cloud Services 安全漏洞

Lexmark Cloud Services is a cloud-based suite of services from Lexmark, Inc. A security vulnerability exists in Lexmark Cloud Services that stems from a lack of authorization for badge management and could allow an attacker to reassign badges within an organization...

Lexmark Universal Print Driver 安全漏洞

Lexmark Universal Print Driver is a printer driver from Lexmark USA. A security vulnerability exists in Lexmark Universal Print Driver that originates from an improperly restricted XML external entity reference, which could lead to the disclosure of sensitive information...

PT-2025-33724 · Lexmark · Lexmark Printer Drivers

Name of the Vulnerable Software and Affected Versions: Lexmark printer drivers for Windows affected versions not specified Description: The software contains an improper restriction of XML External Entity XXE references. This allows an attacker to disclose sensitive information to an arbitrary UR...

PT-2025-33725 · Lexmark · Lexmark Cloud Services

Name of the Vulnerable Software and Affected Versions: Lexmark Cloud Services affected versions not specified Description: A missing authorization vulnerability in Lexmark Cloud Services badge management allows an attacker to reassign badges within their organization. Recommendations: At the...

Lexmark Printer Path Traversal and Concurrent Execution Vulnerability (CVE-2025-1127)

Multiple Lexmark printer devices are prone to a path traversal and concurrent execution vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

CVE-2023-26066

Certain Lexmark devices through 2023-02-19 have Improper Validation of an Array Index...

CVE-2023-26065

Certain Lexmark devices through 2023-02-19 have an Integer Overflow...

CVE-2023-26064

Certain Lexmark devices through 2023-02-19 have an Out-of-bounds Write...

CVE-2023-26070

Certain Lexmark devices through 2023-02-19 mishandle Input Validation issue 4 of 4...

CVE-2023-26069

Certain Lexmark devices through 2023-02-19 mishandle Input Validation issue 3 of 4...

CVE-2023-26067

Certain Lexmark devices through 2023-02-19 mishandle Input Validation issue 1 of 4...

CVE-2023-26068

Certain Lexmark devices through 2023-02-19 mishandle Input Validation issue 2 of 4...

CVE-2023-26063

Certain Lexmark devices through 2023-02-19 access a Resource By Using an Incompatible Type...

CVE-2023-23560

In certain Lexmark products through 2023-01-12, SSRF can occur because of a lack of input validation...