CVE-2019-19773

Various Lexmark products have stored XSS in the embedded web server used in older generation Lexmark devices. Affected products are available in http://support.lexmark.com/index?page=content&id=TE935&locale=en&userlocale=EN_US.

CVE-2019-19772

Various Lexmark products have reflected XSS in the embedded web server used in older generation Lexmark devices. Affected products are available in http://support.lexmark.com/index?page=content&id=TE935&locale=en&userlocale=EN_US.

CVE-2019-10059

The legacy finger service (TCP port 79) is enabled by default on various older Lexmark devices.

CVE-2019-9930

Various Lexmark products have an Integer Overflow.

CVE-2019-9932

Various Lexmark products have a Buffer Overflow (issue 2 of 3).

CVE-2019-9933

Various Lexmark products have a Buffer Overflow (issue 3 of 3).

CVE-2019-9931

Various Lexmark printers contain a denial of service vulnerability in the SNMP service that can be exploited to crash the device.

CVE-2019-10057

Various Lexmark products have CSRF.

CVE-2019-10058

Various Lexmark products have Incorrect Access Control.

CVE-2018-18894

Certain older Lexmark devices (C, M, X, and 6500e before 2018-12-18) contain a directory traversal vulnerability in the embedded web server.

CVE-2020-10093

A cross-site scripting (XSS) vulnerability in Lexmark Pro910 series inkjet and other discontinued products.

CVE-2019-9935

Various Lexmark products have Incorrect Access Control (issue 2 of 2).

CVE-2019-9934

Various Lexmark products have Incorrect Access Control (issue 1 of 2).

CVE-2020-10094

A cross-site scripting (XSS) vulnerability in Lexmark CS31x before LW74.VYL.P273; CS41x before LW74.VY2.P273; CS51x before LW74.VY4.P273; CX310 before LW74.GM2.P273; CX410 & XC2130 before LW74.GM4.P273; CX510 & XC2132 before LW74.GM7.P273; MS310, MS312, MS317 before LW74.PRL.P273; MS410, M1140 befo...