936 matches found
Lexmark 安全漏洞
Lexmark is a line of printers from Lexmark, Inc. in the United States. A security vulnerability exists in Lexmark that originates from a buffer overflow in the Internet Printing Protocol and can be exploited by an attacker to execute arbitrary code...
CVE-2023-50739 A buffer overflow vulnerability has been identified in the Internet Printing Protocol (IPP) in various Lexmark devices.
A buffer overflow vulnerability has been identified in the Internet Printing Protocol IPP in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code...
CVE-2023-50739
CVE-2023-50739 is a buffer overflow vulnerability in the Lexmark Internet Printing Protocol (IPP) server, affecting Lexmark printers/devices. The root cause is a heap-based overflow in the IPP Server Authorization HTTP Header, enabling arbitrary code execution. Several sources (PT-2024-13963, Ten...
CVE-2023-50739 A buffer overflow vulnerability has been identified in the Internet Printing Protocol (IPP) in various Lexmark devices.
A buffer overflow vulnerability has been identified in the Internet Printing Protocol IPP in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code...
CVE-2023-50738
A new feature to prevent Firmware downgrades was recently added to some Lexmark products. A method to override this downgrade protection has been identified...
CVE-2023-50738 A firmware downgrade prevention vulnerability has been identified in newer Lexmark devices.
A new feature to prevent Firmware downgrades was recently added to some Lexmark products. A method to override this downgrade protection has been identified...
CVE-2023-50738 A firmware downgrade prevention vulnerability has been identified in newer Lexmark devices.
A new feature to prevent Firmware downgrades was recently added to some Lexmark products. A method to override this downgrade protection has been identified...
CVE-2023-50738
CVE-2023-50738 describes a bypass of Lexmark printers’ firmware downgrade protection. Multiple sources confirm a newly added downgrade-prevention feature and a method to override it, enabling firmware downgrades on affected Lexmark devices. Reports from Red Hat, Tenable (NT plugin), Nessus, and O...
Lexmark 安全漏洞
Lexmark is a series of printers from Lexmark USA. A security vulnerability exists in Lexmark that stems from a newly added feature that prevents firmware downgrades from being bypassed...
The vulnerability of the microprogramming software used in Lexmark’s Embedded Web Server printers allows a perpetrator to gain access to the device.
The vulnerability of Lexmark’s embedded web server printer software relates to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to gain access to the device by removing the existing privileged user and replacing them with a new password...
infoserve.lexmark.com Cross Site Scripting vulnerability OBB-3945908
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Lexmark CX331adwe Firmware Downgrade Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lexmark CX331adwe printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the /usr/bin/hydra service, which listens on TCP port 9100 by...
PT-2024-13962 · Lexmark · Lexmark Cx331Adwe
Name of the Vulnerable Software and Affected Versions: Lexmark CX331adwe affected versions not specified Description: A method to override the firmware downgrade protection has been identified in some Lexmark products. This issue allows for a bypass of the downgrade protection feature that was...
Lexmark CX331adwe IPP Server Authorization HTTP Header Heap-Based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lexmark CX331adwe printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the IPP server, which listens on TCP port 631 by default. The issue...
PT-2024-13963 · Lexmark · Lexmark Devices
Name of the Vulnerable Software and Affected Versions: Lexmark devices affected versions not specified Description: A buffer overflow vulnerability has been identified in the Internet Printing Protocol IPP in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute...
Vulnerabilities Fixed in Lexmark Multifunctionals
Lexmark has fixed vulnerabilities in the firmware of several types of multifunction devices. A malicious person could exploit them to bypass a security measure and thus provide the vulnerable system with outdated, or potentially rogue, firmware, or to execute arbitrary code on the system. Lexmark...
Lexmark Printer RCE Vulnerability (CVE-2023-50739)
Multiple Lexmark printer devices are prone to remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPEPREFI...
infoserve.lexmark.com Cross Site Scripting vulnerability OBB-3885825
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
infoserve.lexmark.com Cross Site Scripting vulnerability OBB-3877695
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2023-50737
The SE menu contains information used by Lexmark to diagnose device errors. A vulnerability in one of the SE menu routines can be leveraged by an attacker to execute arbitrary code...