936 matches found
support.lexmark.com XSS vulnerability
Vulnerable URL: http://support.lexmark.com/index?page=" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check support.lexmark.com SS...
The vulnerability of Lexmark’s microprogramming software allows a hacker to obtain confidential information.
The vulnerability of Lexmark’s microprogramming software is related to the lack of protection for operational data. Exploiting this vulnerability can allow a local attacker to obtain confidential information by directly reading data from non-volatile memory...
Lexmark Printer Sensitive Information Disclosure Vulnerability
Lexmark printer is a printer product. An information disclosure vulnerability exists in the Lexmark printer, where failure to properly handle Erase Printer Memory and Erase Hard Disk operations could allow a local attacker to obtain sensitive information by directly reading non-volatile memory...
CVE-2016-3145
Lexmark printers with firmware ATL before ATL.021.063, CB before CB.021.063, PP before PP.021.063, and YK before YK.021.063 mishandle Erase Printer Memory and Erase Hard Disk actions, which allows physically proximate attackers to obtain sensitive information via direct read operations on...
CVE-2016-3145
Lexmark printers with firmware ATL before ATL.021.063, CB before CB.021.063, PP before PP.021.063, and YK before YK.021.063 mishandle Erase Printer Memory and Erase Hard Disk actions, which allows physically proximate attackers to obtain sensitive information via direct read operations on...
Hardcoded credentials
Lexmark printers with firmware ATL before ATL.021.063, CB before CB.021.063, PP before PP.021.063, and YK before YK.021.063 mishandle Erase Printer Memory and Erase Hard Disk actions, which allows physically proximate attackers to obtain sensitive information via direct read operations on...
CVE-2016-3145
Lexmark printers with firmware ATL before ATL.021.063, CB before CB.021.063, PP before PP.021.063, and YK before YK.021.063 mishandle Erase Printer Memory and Erase Hard Disk actions, which allows physically proximate attackers to obtain sensitive information via direct read operations on...
CVE-2016-3145
Summary of the CVE-2016-3145 issue: Lexmark printers are affected when running firmware ATL.X before ATL.021.063, CB before CB.021.063, PP before PP.021.063, and YK before YK.021.063. The vulnerability arises from improper handling of the Erase Printer Memory and Erase Hard Disk actions, enabling...
The vulnerability of Lexmark’s microprogramming software allows a hacker to bypass the authentication process.
The vulnerability of Lexmark’s microprogramming software exists due to insufficient checking of resource status when resources can be used concurrently. Exploiting this vulnerability allows a malicious actor to bypass authentication procedures by using incorrect detection of resource status...
Lexmark Markvision Enterprise Java Object Deserialization RCE
The remote Lexmark Markvision Enterprise server is affected by a remote code execution vulnerability due to unsafe deserialize calls of unauthenticated Java objects to the Apache Commons Collections ACC library. An unauthenticated, remote attacker can exploit this, by sending a specially crafted...
Lexmark Printer Competitive Conditions Vulnerability
Lexmark printer is a printer product from Lexmark, USA. A competitive condition vulnerability exists in the initialization process of the Lexmark printer. A remote attacker can bypass authentication via incorrect detection of security-jumper state...
CVE-2016-1896
Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypass authentication by leveraging incorrect detection of the security-jumper status...
CVE-2016-1896
Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypass authentication by leveraging incorrect detection of the security-jumper status...
Race condition
Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypass authentication by leveraging incorrect detection of the security-jumper status...
CVE-2016-1896
Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypass authentication by leveraging incorrect detection of the security-jumper status...
CVE-2016-1896
Lexmark printer vulnerability CVE-2016-1896 involves a race condition in the initialization process that allows remote attackers to bypass authentication by exploiting incorrect detection of security-jumper status. Affected devices are Lexmark printers with firmware ATL before ATL.02.049, CB befo...
support.lexmark.com Open Redirect vulnerability
Vulnerable URL: http://support.lexmark.com/index?page=answerlink=enUS=DOWNLOAD=en=https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not...
lexmark-cartridges.com XSS vulnerability
Vulnerable URL: http://lexmark-cartridges.com/cfv2/printer.php?lang=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 13555557 Google...
Lexmark Printer config.html Administrator Authentication Bypass (FREAK)
According to its firmware version, the remote Lexmark printer is affected by a security feature bypass vulnerability, known as FREAK Factoring attack on RSA-EXPORT Keys, due to the support of weak EXPORTRSA cipher suites with keys less than or equal to 512 bits. A man-in-the-middle attacker may b...
Lexmark Markvision Enterprise LibraryFileUploadServlet Directory Traversal (CVE-2014-9375)
A directory traversal vulnerability has been reported in Lexmark Markvision Enterprise. The vulnerability is due to insufficient input validation in LibraryFileUploadServlet when processing zip files. A remote, unauthenticated attacker could exploit this vulnerability by enticing the target user ...