Cx410 Firmware Security Vulnerabilities and Issues — Cx410 Firmware CVE List

Lucene search

LexmarkCx410 Firmware

12 matches found

CVE•added 2020/03/06 10:15 p.m.•144 views

CVE-2019-19773

Various Lexmark products have stored XSS in the embedded web server used in older generation Lexmark devices. Affected products are available in http://support.lexmark.com/index?page=content&id=TE935&locale=en&userlocale=EN_US.

5.4CVSS5.2AI score0.00352EPSS

CVE•added 2020/03/06 10:15 p.m.•139 views

CVE-2019-19772

Various Lexmark products have reflected XSS in the embedded web server used in older generation Lexmark devices. Affected products are available in http://support.lexmark.com/index?page=content&id=TE935&locale=en&userlocale=EN_US.

5.4CVSS5.3AI score0.00352EPSS

CVE•added 2022/01/20 5:15 p.m.•70 views

CVE-2021-44734

Embedded web server input sanitization vulnerability in Lexmark devices through 2021-12-07, which can which can lead to remote code execution on the device.

10CVSS9.8AI score0.083EPSS

CVE•added 2022/01/20 4:15 p.m.•67 views

CVE-2021-44738

Buffer overflow vulnerability has been identified in Lexmark devices through 2021-12-07 in postscript interpreter.

10CVSS9.5AI score0.00843EPSS

CVE•added 2020/02/13 4:15 p.m.•58 views

CVE-2019-18791

Lexmark printer MS812 and multiple older generation Lexmark devices have a stored XSS vulnerability in the embedded web server. The vulnerability can be exploited to expose session credentials and other information via the users web browser.

5.4CVSS5.2AI score0.00298EPSS

CVE•added 2022/01/20 5:15 p.m.•57 views

CVE-2021-44737

PJL directory traversal vulnerability in Lexmark devices through 2021-12-07 that can be leveraged to overwrite internal configuration files.

8.8CVSS8.6AI score0.00825EPSS

CVE•added 2020/03/10 1:15 p.m.•48 views

CVE-2018-18894

Certain older Lexmark devices (C, M, X, and 6500e before 2018-12-18) contain a directory traversal vulnerability in the embedded web server.

7.5CVSS7.5AI score0.00271EPSS

CVE•added 2020/04/28 2:15 p.m.•47 views

CVE-2020-10093

A cross-site scripting (XSS) vulnerability in Lexmark Pro910 series inkjet and other discontinued products.

5.4CVSS5.3AI score0.00352EPSS

CVE•added 2019/06/28 5:15 p.m.•46 views

CVE-2018-15519

Various Lexmark devices have a Buffer Overflow (issue 1 of 2).

9.8CVSS9.5AI score0.00543EPSS

CVE•added 2019/02/11 9:29 p.m.•42 views

CVE-2019-6489

Certain Lexmark CX, MX, X, XC, XM, XS, and 6500e devices before 2019-02-11 allow remote attackers to erase stored shortcuts.

6.4CVSS5.3AI score0.00599EPSS

CVE•added 2023/09/01 11:15 a.m.•41 views

CVE-2023-40239

Certain Lexmark devices (such as CS310) before 2023-08-25 allow XXE attacks, leading to information disclosure. The fixed firmware version is LW80..P246, i.e., ' ' indicates that the full version specification varies across product model family, but firmware level P246 (or higher) is required to re...

7.5CVSS7.3AI score0.00179EPSS

CVE•added 2020/04/28 2:15 p.m.•38 views

CVE-2020-10094

A cross-site scripting (XSS) vulnerability in Lexmark CS31x before LW74.VYL.P273; CS41x before LW74.VY2.P273; CS51x before LW74.VY4.P273; CX310 before LW74.GM2.P273; CX410 & XC2130 before LW74.GM4.P273; CX510 & XC2132 before LW74.GM7.P273; MS310, MS312, MS317 before LW74.PRL.P273; MS410, M1140 befo...

5.4CVSS5.3AI score0.00352EPSS