3 matches found
Lexmark Printers Improper Restriction of XML External Entity Reference (CVE-2023-40239)
Certain Lexmark devices such as CS310 before 2023-08-25 allow XXE attacks, leading to information disclosure. The fixed firmware version is LW80..P246, i.e., '' indicates that the full version specification varies across product model family, but firmware level P246 or higher is required to...
CVE-2023-40239
creationtimestamp| type| source ---|---|--- 2023-09-01 14:13:56+00:00| seen| https://t.me/cibsecurity/69630...
CVE-2023-40239
Vulnerability: CVE-2023-40239 affects Lexmark devices (e.g., CS310) prior to 2023-08-25, enabling XML External Entity (XXE) attacks that can disclose information. Root cause / impact: XXE processing flaw in affected firmware leading to information disclosure; no exploit details provided in the do...