4 matches found
CVE-2021-44738
CVE-2021-44738 is a buffer-overflow vulnerability in Lexmark devices’ PostScript interpreter. Multiple sources (ZDI advisories and NVD) describe a write past the end of a buffer during PostScript data handling, enabling potential remote code execution on affected Lexmark printers (e.g., MC3224i) ...
CVE-2021-44734
CVE-2021-44734 affects Lexmark devices with an embedded web server input sanitization vulnerability that can lead to remote code execution. The issue is documented across multiple feeds (NVD, CVE lists, and vendor advisories) and is tied to Lexmark security alerts (e.g., CVE-2021-44734.pdf) and Z...
CVE-2021-44737
Lexmark PJL path traversal (CVE-2021-44737) affects Lexmark printers (via PJL command handling) and can overwrite internal configuration files. The root cause is improper filtering of resource/file paths allowing directory traversal. In the Tenable ZDI advisory, it is described as a remote-code-e...
CVE-2018-18894
CVE-2018-18894 affects older Lexmark devices (C, M, X, and 6500e) with firmware prior to 2018-12-18. The issue is a directory traversal vulnerability in the devices’ embedded web server, allowing path traversal to access files beyond intended scope. The available sources describe the vulnerabilit...