Known Vulnerabilities for products from Lexmark
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Lexmark".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Lexmark can be found at device.report : Lexmark
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-40239 | Certain Lexmark devices (such as CS310) before 2023-08-25 allow XXE attacks, leading to information disclosure. The fixed fir... | 7.5 - HIGH | 2023-09-01 | 2023-09-07 |
| CVE-2023-26070 | Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 4 of 4). | 9.8 - CRITICAL | 2023-04-10 | 2023-05-08 |
| CVE-2023-26069 | Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 3 of 4). | 9.8 - CRITICAL | 2023-04-10 | 2023-05-08 |
| CVE-2023-26068 | Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 2 of 4). | 9.8 - CRITICAL | 2023-04-10 | 2023-09-19 |
| CVE-2023-26067 | Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 1 of 4). | 8.1 - HIGH | 2023-04-10 | 2023-09-19 |
| CVE-2023-26066 | Certain Lexmark devices through 2023-02-19 have Improper Validation of an Array Index. | 9.8 - CRITICAL | 2023-04-10 | 2023-05-08 |
| CVE-2023-26065 | Certain Lexmark devices through 2023-02-19 have an Integer Overflow. | 9.8 - CRITICAL | 2023-04-10 | 2023-05-08 |
| CVE-2023-26064 | Certain Lexmark devices through 2023-02-19 have an Out-of-bounds Write. | 9.8 - CRITICAL | 2023-04-10 | 2023-05-08 |
| CVE-2023-26063 | Certain Lexmark devices through 2023-02-19 access a Resource By Using an Incompatible Type. | 9.8 - CRITICAL | 2023-04-10 | 2023-05-08 |
| CVE-2023-23560 | In certain Lexmark products through 2023-01-12, SSRF can occur because of a lack of input validation. | 9.8 - CRITICAL | 2023-01-23 | 2023-02-08 |
| CVE-2023-22960 | Lexmark products through 2023-01-10 have Improper Control of Interaction Frequency. | 7.5 - HIGH | 2023-01-23 | 2023-02-06 |
| CVE-2022-29850 | Various Lexmark products through 2022-04-27 allow an attacker who has already compromised an affected Lexmark device to maint... | 8.1 - HIGH | 2022-08-26 | 2023-08-08 |
| CVE-2022-24935 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-04-28 | 2023-08-08 |
| CVE-2021-44738 | Buffer overflow vulnerability has been identified in Lexmark devices through 2021-12-07 in postscript interpreter. | 9.8 - CRITICAL | 2022-01-20 | 2022-03-04 |
| CVE-2021-44737 | PJL directory traversal vulnerability in Lexmark devices through 2021-12-07 that can be leveraged to overwrite internal confi... | 8.8 - HIGH | 2022-01-20 | 2022-03-17 |
| CVE-2021-44736 | The initial admin account setup wizard on Lexmark devices allow unauthenticated access to the “out of service erase” feat... | 9.8 - CRITICAL | 2022-01-20 | 2022-03-17 |
| CVE-2021-44735 | Embedded web server command injection vulnerability in Lexmark devices through 2021-12-07. | 9.8 - CRITICAL | 2022-01-20 | 2022-03-17 |
| CVE-2021-44734 | Embedded web server input sanitization vulnerability in Lexmark devices through 2021-12-07, which can which can lead to remot... | 9.8 - CRITICAL | 2022-01-20 | 2023-08-08 |
| CVE-2021-35469 | The Lexmark Printer Software G2, G3 and G4 Installation Packages have a local escalation of privilege vulnerability due to a ... | 7.8 - HIGH | 2021-07-14 | 2021-07-19 |
| CVE-2021-35449 | The Lexmark Universal Print Driver version 2.15.1.0 and below, G2 driver 2.7.1.0 and below, G3 driver 3.2.0.0 and below, and ... | 7.8 - HIGH | 2021-07-19 | 2021-09-20 |
Known software with vulnerabilities from Lexmark
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Lexmark | 25xxn | - |
| Operating System | Lexmark | 25xxn Firmware | - |
| Hardware | Lexmark | 6500 | - |
| Hardware | Lexmark | 6500e | - |
| Operating System | Lexmark | 6500e Firmware | - |
| Operating System | Lexmark | 6500 Firmware | lhs60.jr.p671 |
| Hardware | Lexmark | C4150 | - |
| Hardware | Lexmark | C510 | - |
| Operating System | Lexmark | C510 Firmware | - |
| Hardware | Lexmark | C520 | - |
| Operating System | Lexmark | C520 Firmware | - |
| Hardware | Lexmark | C522 | - |
| Operating System | Lexmark | C522 Firmware | - |
| Hardware | Lexmark | C524 | - |
| Operating System | Lexmark | C524 Firmware | - |
| Hardware | Lexmark | C52x | - |
| Hardware | Lexmark | C530 | - |
| Operating System | Lexmark | C530 Firmware | - |
| Hardware | Lexmark | C532 | - |
| Operating System | Lexmark | C532 Firmware | - |