8 matches found
CVE-2023-26067
CVE-2023-26067 affects Lexmark printers/devices with an embedded web server where improper input validation enables a command-injection path. The Nuclei template and related advisories describe an unauthenticated or limited-auth context that can lead to remote command execution, potentially escal...
CVE-2023-26068
CVE-2023-26068 affects Lexmark devices’ embedded web server. The issue is an input validation flaw that enables unauthenticated remote code execution on affected Lexmark printers/facilities through 2023-02-19. A notable exploitation path described in sources is when no Admin user is created durin...
CVE-2023-26063
CVE-2023-26063 concerns Lexmark printers/multifunction devices with a vulnerability in the PostScript interpreter that enables a type confusion flaw in resource handling. Reported impact in connected sources: remote code execution by a remote attacker, via the affected Lexmark devices up to 2023-...
CVE-2023-26066
The CVE-2023-26066 issue affects Lexmark printers with the PostScript interpreter, where improper validation of the stack/array indices allows remote code execution. Technical details in connected data specify: affected devices are Lexmark printers through 2023-02-19; vulnerability arises from im...
CVE-2023-26064
Summary: CVE-2023-26064 affects Lexmark devices with a PostScript interpreter, where an out-of-bounds write flaw can lead to arbitrary code execution. The connected Nessus/NVL and Red Hat/NCSC entries confirm this vulnerability in Lexmark printers and indicate exploitation could be remote and hig...
CVE-2023-26065
CVE-2023-26065 affects Lexmark printers/devices with a vulnerable PostScript interpreter. Multiple connected sources confirm an integer overflow in this component, enabling a remote attacker to potentially execute arbitrary code with high impact (confidentiality/ integrity/ availability). The vul...
CVE-2023-26069
The CVE-2023-26069 issue affects Lexmark devices with vulnerable web API input handling. The Tenable NASL and Red Hat/NVD references describe an input validation vulnerability that can be leveraged remotely to execute arbitrary code on affected Lexmark printers/devices (no exploit specifics in th...
CVE-2023-26070
The CVE-2023-26070 issue affects Lexmark printers and Multifunction devices, arising from improper input validation in the SNMP feature. This vulnerability can allow an attacker to execute arbitrary code remotely on vulnerable devices. Affected products are Lexmark printers with firmware up to th...