Lucene search
K
LexmarkMx511 Firmware

17 matches found

CVE
CVE
added 2020/03/06 9:1 p.m.155 views

CVE-2019-19773

CVE-2019-19773 describes a stored cross-site scripting (XSS) vulnerability in the embedded web server of older Lexmark devices/printers. The issue arises from improper validation in web server handling of client data, leading to possible client-side code execution within affected interfaces. Mult...

5.4CVSS5.2AI score0.00653EPSS
CVE
CVE
added 2020/03/06 9:1 p.m.148 views

CVE-2019-19772

CVE-2019-19772 affects Lexmark printers with an embedded web server that is vulnerable to reflected Cross-Site Scripting (XSS). Root cause: lack of proper validation of client-side data in the web application, enabling an attacker to inject and execute script in a user’s browser. Impact per sourc...

5.4CVSS5.3AI score0.00653EPSS
CVE
CVE
added 2019/08/28 9:28 p.m.143 views

CVE-2019-10059

The CVE-2019-10059 entry concerns the legacy finger service (TCP port 79) enabled by default on various older Lexmark devices. Multiple connected sources confirm this configuration across Lexmark printers and related hardware, with no public exploit details provided in the supplied documents. The...

5.3CVSS5.3AI score0.00871EPSS
CVE
CVE
added 2019/08/28 9:35 p.m.137 views

CVE-2019-9930

The connected OpenVAS/NASL entry for Lexmark printers (TE920) explicitly lists multiple Lexmark vulnerabilities, including buffer/overflow issues. It states there are overflows in the Lexmark Web Server and associates CVE-2019-9930 with these overflow conditions, alongside other related CVEs (e.g...

10CVSS9.4AI score0.0152EPSS
CVE
CVE
added 2019/08/28 9:41 p.m.128 views

CVE-2019-9931

CVE-2019-9931 involves a denial-of-service flaw in the SNMP service of various Lexmark printers, allowing an attacker to crash the device. The connected Tenable/OpenVAS-derived entries and Red Hat/NVD references confirm the vulnerability affects Lexmark printers and is triggered via SNMP. The roo...

7.8CVSS7.3AI score0.01074EPSS
CVE
CVE
added 2019/08/28 9:37 p.m.128 views

CVE-2019-9933

CVE-2019-9933 affects Lexmark printers; multiple sources describe a Buffer Overflow vulnerability (issue 3 of 3) impacting Lexmark Web Server and related components. NVD lists a critical CVSS v3 base score of 9.8 with network access, no user interaction, and high impact to confidentiality, integr...

10CVSS9.4AI score0.01512EPSS
CVE
CVE
added 2019/08/28 9:36 p.m.127 views

CVE-2019-9932

CVE-2019-9932 is a buffer overflow vulnerability affecting Lexmark printers, with a reported issue 2 of 3 in the broader set of Lexmark vulnerabilities. Multiple connected sources associate this CVE with buffer overflow conditions in Lexmark components (notably the Web Server) that could allow me...

10CVSS9.4AI score0.01512EPSS
CVE
CVE
added 2022/01/20 3:59 p.m.82 views

CVE-2021-44738

CVE-2021-44738 is a buffer-overflow vulnerability in Lexmark devices’ PostScript interpreter. Multiple sources (ZDI advisories and NVD) describe a write past the end of a buffer during PostScript data handling, enabling potential remote code execution on affected Lexmark printers (e.g., MC3224i) ...

10CVSS9.5AI score0.03312EPSS
CVE
CVE
added 2022/01/20 4:11 p.m.81 views

CVE-2021-44734

CVE-2021-44734 affects Lexmark devices with an embedded web server input sanitization vulnerability that can lead to remote code execution. The issue is documented across multiple feeds (NVD, CVE lists, and vendor advisories) and is tied to Lexmark security alerts (e.g., CVE-2021-44734.pdf) and Z...

10CVSS9.8AI score0.06427EPSS
CVE
CVE
added 2020/02/13 3:1 p.m.76 views

CVE-2019-18791

The CVE-2019-18791 issue affects Lexmark printer MS812 and older Lexmark devices, due to a stored XSS in the embedded web server. The root cause is insufficient validation of client-side data by the web application, allowing an attacker to expose session credentials and other information via the ...

5.4CVSS5.2AI score0.00527EPSS
CVE
CVE
added 2022/01/20 4:4 p.m.71 views

CVE-2021-44737

Lexmark PJL path traversal (CVE-2021-44737) affects Lexmark printers (via PJL command handling) and can overwrite internal configuration files. The root cause is improper filtering of resource/file paths allowing directory traversal. In the Tenable ZDI advisory, it is described as a remote-code-e...

8.8CVSS8.6AI score0.01435EPSS
CVE
CVE
added 2019/08/28 3:59 p.m.67 views

CVE-2019-10058

CVE-2019-10058 affects Lexmark printers; root cause is Incorrect Access Control due to lack of account lockout implemented on certain Lexmark devices. Documented across multiple sources (Threatpost/NVD) with references to Lexmark-specific advisories and NCC Group findings. Impact is described as ...

9.1CVSS9.2AI score0.01082EPSS
CVE
CVE
added 2020/03/10 12:50 p.m.62 views

CVE-2018-18894

CVE-2018-18894 affects older Lexmark devices (C, M, X, and 6500e) with firmware prior to 2018-12-18. The issue is a directory traversal vulnerability in the devices’ embedded web server, allowing path traversal to access files beyond intended scope. The available sources describe the vulnerabilit...

7.5CVSS7.5AI score0.01655EPSS
CVE
CVE
added 2020/04/28 1:17 p.m.62 views

CVE-2020-10093

CVE-2020-10093 is a cross-site scripting (XSS) vulnerability in Lexmark Pro910 series inkjet and other discontinued Lexmark products. The underlying cause is insufficient validation of client-side data by the WEB application, enabling a malicious input to be reflected or executed in the context o...

5.4CVSS5.3AI score0.00653EPSS
CVE
CVE
added 2023/09/01 12:0 a.m.59 views

CVE-2023-40239

Vulnerability: CVE-2023-40239 affects Lexmark devices (e.g., CS310) prior to 2023-08-25, enabling XML External Entity (XXE) attacks that can disclose information. Root cause / impact: XXE processing flaw in affected firmware leading to information disclosure; no exploit details provided in the do...

7.5CVSS7.3AI score0.00451EPSS
CVE
CVE
added 2019/02/11 9:0 p.m.56 views

CVE-2019-6489

The vulnerability CVE-2019-6489 affects Lexmark devices: CX, MX, X, XC, XM, XS, and 6500e printers. The public description states that, prior to 2019-02-11, remote attackers could erase stored shortcuts, implying an issue with how input is handled by the device. Connected sources align on the sam...

6.4CVSS5.3AI score0.00935EPSS
CVE
CVE
added 2020/04/28 1:17 p.m.50 views

CVE-2020-10094

CVE-2020-10094 is a cross-site scripting (XSS) vulnerability in Lexmark printers. The affected line items include Lexmark CS31x, CS41x, CS51x, CX310, CX410, XC2130, CX510, XC2132, MS310/312/317, MS410, M1140, MS315/415/417, MS51x/610dn/617, M1145, M3150dn, MS610de, M3150, MS71x, M5163dn, and vari...

5.4CVSS5.3AI score0.00653EPSS