CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

936 matches found

CVE•added 2023/01/23 12:0 a.m.•110 views

CVE-2023-22960

CVE-2023-22960 : Lexmark printer firmware prior to 2023-01-10 is affected by Improper Control of Interaction Frequency, enabling bypass of login brute-force protections. Connected sources indicate exploitation involves the Embedded Web Server interface; impact is limited to authentication bypass ...

7.5CVSS7.5AI score0.27766EPSS

Exploits1References1Affected Software1

CVE•added 2023/01/23 12:0 a.m.•167 views

CVE-2023-23560

CVE-2023-23560 affects Lexmark printers and multifunction devices with a server-side request forgery (SSRF) flaw caused by insufficient input validation in the vulnerable web interface. Reports indicate this can lead to arbitrary code execution with system privileges on affected devices, based on...

9.8CVSS9.3AI score0.14954EPSS

Exploits1References2Affected Software1

CNNVD•added 2023/01/23 12:0 a.m.•6 views

Lexmark 代码问题漏洞

Lexmark is a line of printers in the United States. A security vulnerability exists in Lexmark products version 2023-01-12 and prior versions that stems from a lack of input validation...

9.8CVSS8.3AI score0.14954EPSS

Exploits1References3

Vulnrichment•added 2023/01/23 12:0 a.m.•8 views

CVE-2023-22960

Lexmark products through 2023-01-10 have Improper Control of Interaction Frequency...

7.2AI score0.27766EPSS

Exploits1References1

Positive Technologies•added 2023/01/18 12:0 a.m.•2 views

PT-2023-1216 · Lexmark · Lexmark

Name of the Vulnerable Software and Affected Versions: Lexmark products through 2023-01-12 Description: The issue is related to insufficient validation of requests on the server side of the New Lexmark Devices web service for Lexmark printers. This can allow a remote attacker to execute arbitrary...

9.8CVSS9.7AI score0.14954EPSS

Exploits1References11

GithubExploit•added 2023/01/10 10:44 a.m.•10 views

Exploit for Server-Side Request Forgery in Lexmark B2236_Firmware

Lexmark printer stuff This repository contains all the work r...

9.8CVSS7.3AI score0.14954EPSS

Exploits1

OpenVAS•added 2022/09/06 12:0 a.m.•11 views

Lexmark Printer Improper Input Validation Vulnerability (Jun 2022)

Multiple Lexmark printer devices are prone to an improper input validation vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later Th...

8.1CVSS8.2AI score0.00841EPSS

Exploits0References1

NVD•added 2022/08/26 12:15 a.m.•12 views

CVE-2022-29850

Various Lexmark products through 2022-04-27 allow an attacker who has already compromised an affected Lexmark device to maintain persistence across reboots...

8.1CVSS0.00841EPSS

Exploits0References3

OSV•added 2022/08/26 12:15 a.m.•3 views

CVE-2022-29850

Various Lexmark products through 2022-04-27 allow an attacker who has already compromised an affected Lexmark device to maintain persistence across reboots...

8.1CVSS5.8AI score0.00841EPSS

Exploits0References3

ATTACKERKB•added 2022/08/26 12:15 a.m.•1 views

CVE-2022-29850

Various Lexmark products through 2022-04-27 allow an attacker who has already compromised an affected Lexmark device to maintain persistence across reboots...

8.1CVSS7.1AI score0.00841EPSS

Exploits0References4

Prion•added 2022/08/26 12:15 a.m.•17 views

Design/Logic Flaw

Various Lexmark products through 2022-04-27 allow an attacker who has already compromised an affected Lexmark device to maintain persistence across reboots...

5.1CVSS8AI score0.00841EPSS

Exploits0References3Affected Software117

CVE•added 2022/08/25 11:11 p.m.•63 views

CVE-2022-29850

Summary: CVE-2022-29850 affects Lexmark printers/products through 2022-04-27. An attacker who has already compromised an affected Lexmark device can use improper input validation to maintain persistence across reboots. Affected component: Lexmark printer product line (unspecified models) with vul...

8.1CVSS8AI score0.00841EPSS

Exploits0References3Affected Software1

Cvelist•added 2022/08/25 11:11 p.m.•18 views

CVE-2022-29850

Various Lexmark products through 2022-04-27 allow an attacker who has already compromised an affected Lexmark device to maintain persistence across reboots...

8.2AI score0.00841EPSS

Exploits0References3

CNNVD•added 2022/08/25 12:0 a.m.•4 views

Lexmark 输入验证错误漏洞

Lexmark is a line of printers in the United States. Lexmark 2022-04-27 An input validation error vulnerability exists in some previous products, which stems from incorrect input validation and allows external control over system or configuration settings...

8.1CVSS5.5AI score0.00841EPSS

Exploits0References5

Positive Technologies•added 2022/08/25 12:0 a.m.•4 views

PT-2022-19877 · Lexmark · Lexmark

Name of the Vulnerable Software and Affected Versions: Lexmark products through 2022-04-27 Description: The issue allows an attacker who has already compromised an affected Lexmark device to maintain persistence across reboots. It is due to improper input validation, which enables external contro...

8.1CVSS8AI score0.00841EPSS

Exploits0References6

Zero Day Initiative•added 2022/08/02 12:0 a.m.•31 views

Lexmark MC3224i Firmware Downgrade Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lexmark MC3224i printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the firmware upgrade feature. The issue results from the lack of...

8.8CVSS4.8AI score0.00713EPSS

Exploits0References1

ATTACKERKB•added 2022/04/28 1:15 p.m.•5 views

CVE-2022-24935

Lexmark products through 2022-02-10 have Incorrect Access Control...

7.5CVSS5.8AI score0.00713EPSS

Exploits0References3

OSV•added 2022/04/28 1:15 p.m.•1 views

CVE-2022-24935

Lexmark products through 2022-02-10 have Incorrect Access Control...

7.5CVSS5.8AI score0.00713EPSS

Exploits0References2