2 matches found
The vulnerability of the microprogramming software used in Lexmark’s Embedded Web Server printers allows a perpetrator to gain access to the device.
The vulnerability of Lexmark’s embedded web server printer software relates to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to gain access to the device by removing the existing privileged user and replacing them with a new password...
CVE-2024-6788 Phoenix Contact: update feature from CHARX controller can be used to reset a low privilege user password
A remote unauthenticated attacker can use the firmware update feature on the LAN interface of the device to reset the password for the predefined, low-privileged user “user-app” to the default password...