Lucene search
K
LexmarkMx71x Firmware

14 matches found

CVE
CVE
added 2020/03/06 9:1 p.m.156 views

CVE-2019-19773

CVE-2019-19773 describes a stored cross-site scripting (XSS) vulnerability in the embedded web server of older Lexmark devices/printers. The issue arises from improper validation in web server handling of client data, leading to possible client-side code execution within affected interfaces. Mult...

5.4CVSS5.2AI score0.00653EPSS
CVE
CVE
added 2020/03/06 9:1 p.m.148 views

CVE-2019-19772

CVE-2019-19772 affects Lexmark printers with an embedded web server that is vulnerable to reflected Cross-Site Scripting (XSS). Root cause: lack of proper validation of client-side data in the web application, enabling an attacker to inject and execute script in a user’s browser. Impact per sourc...

5.4CVSS5.3AI score0.00653EPSS
CVE
CVE
added 2019/08/28 9:28 p.m.143 views

CVE-2019-10059

The CVE-2019-10059 entry concerns the legacy finger service (TCP port 79) enabled by default on various older Lexmark devices. Multiple connected sources confirm this configuration across Lexmark printers and related hardware, with no public exploit details provided in the supplied documents. The...

5.3CVSS5.3AI score0.00871EPSS
CVE
CVE
added 2019/08/28 9:35 p.m.138 views

CVE-2019-9930

The connected OpenVAS/NASL entry for Lexmark printers (TE920) explicitly lists multiple Lexmark vulnerabilities, including buffer/overflow issues. It states there are overflows in the Lexmark Web Server and associates CVE-2019-9930 with these overflow conditions, alongside other related CVEs (e.g...

10CVSS9.4AI score0.0152EPSS
CVE
CVE
added 2019/08/28 9:41 p.m.128 views

CVE-2019-9931

CVE-2019-9931 involves a denial-of-service flaw in the SNMP service of various Lexmark printers, allowing an attacker to crash the device. The connected Tenable/OpenVAS-derived entries and Red Hat/NVD references confirm the vulnerability affects Lexmark printers and is triggered via SNMP. The roo...

7.8CVSS7.3AI score0.01074EPSS
CVE
CVE
added 2019/08/28 9:37 p.m.128 views

CVE-2019-9933

CVE-2019-9933 affects Lexmark printers; multiple sources describe a Buffer Overflow vulnerability (issue 3 of 3) impacting Lexmark Web Server and related components. NVD lists a critical CVSS v3 base score of 9.8 with network access, no user interaction, and high impact to confidentiality, integr...

10CVSS9.4AI score0.01512EPSS
CVE
CVE
added 2019/08/28 9:36 p.m.127 views

CVE-2019-9932

CVE-2019-9932 is a buffer overflow vulnerability affecting Lexmark printers, with a reported issue 2 of 3 in the broader set of Lexmark vulnerabilities. Multiple connected sources associate this CVE with buffer overflow conditions in Lexmark components (notably the Web Server) that could allow me...

10CVSS9.4AI score0.01512EPSS
CVE
CVE
added 2020/02/13 3:1 p.m.76 views

CVE-2019-18791

The CVE-2019-18791 issue affects Lexmark printer MS812 and older Lexmark devices, due to a stored XSS in the embedded web server. The root cause is insufficient validation of client-side data by the web application, allowing an attacker to expose session credentials and other information via the ...

5.4CVSS5.2AI score0.00527EPSS
CVE
CVE
added 2019/08/28 3:59 p.m.68 views

CVE-2019-10058

CVE-2019-10058 affects Lexmark printers; root cause is Incorrect Access Control due to lack of account lockout implemented on certain Lexmark devices. Documented across multiple sources (Threatpost/NVD) with references to Lexmark-specific advisories and NCC Group findings. Impact is described as ...

9.1CVSS9.2AI score0.01082EPSS
CVE
CVE
added 2020/03/10 12:50 p.m.63 views

CVE-2018-18894

CVE-2018-18894 affects older Lexmark devices (C, M, X, and 6500e) with firmware prior to 2018-12-18. The issue is a directory traversal vulnerability in the devices’ embedded web server, allowing path traversal to access files beyond intended scope. The available sources describe the vulnerabilit...

7.5CVSS7.5AI score0.01655EPSS
CVE
CVE
added 2020/04/28 1:17 p.m.62 views

CVE-2020-10093

CVE-2020-10093 is a cross-site scripting (XSS) vulnerability in Lexmark Pro910 series inkjet and other discontinued Lexmark products. The underlying cause is insufficient validation of client-side data by the WEB application, enabling a malicious input to be reflected or executed in the context o...

5.4CVSS5.3AI score0.00653EPSS
CVE
CVE
added 2019/06/28 4:12 p.m.58 views

CVE-2018-15519

Summary: CVE-2018-15519 affects Lexmark devices (printers/multi-function devices). The issue is a buffer overflow caused by improper restriction of operations within the bounds of a memory buffer (described as “issue 1 of 2” in multiple sources). The NVD and OpenVAS entries indicate high/severe i...

9.8CVSS9.5AI score0.01186EPSS
CVE
CVE
added 2019/02/11 9:0 p.m.56 views

CVE-2019-6489

The vulnerability CVE-2019-6489 affects Lexmark devices: CX, MX, X, XC, XM, XS, and 6500e printers. The public description states that, prior to 2019-02-11, remote attackers could erase stored shortcuts, implying an issue with how input is handled by the device. Connected sources align on the sam...

6.4CVSS5.3AI score0.00935EPSS
CVE
CVE
added 2020/04/28 1:17 p.m.51 views

CVE-2020-10094

CVE-2020-10094 is a cross-site scripting (XSS) vulnerability in Lexmark printers. The affected line items include Lexmark CS31x, CS41x, CS51x, CX310, CX410, XC2130, CX510, XC2132, MS310/312/317, MS410, M1140, MS315/415/417, MS51x/610dn/617, M1145, M3150dn, MS610de, M3150, MS71x, M5163dn, and vari...

5.4CVSS5.3AI score0.00653EPSS