Lucene search

[email protected]CVE-2018-15520

HistoryJun 28, 2019 - 4:15 p.m.

CVE-2018-15520

2019-06-2816:15:09

CWE-119

[email protected]

web.nvd.nist.gov

lexmark

buffer overflow

cve-2018-15520

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.2%

JSON

Various Lexmark devices have a Buffer Overflow (issue 2 of 2).

Affected configurations

NVD

Node

lexmarkcx82x_firmwareRange≤cxtpp.052.024

lexmarkcx82x_firmwareRangecxtpp.052.200–cxtpp.052.204

AND

lexmarkcx82xMatch-

Node

lexmarkcx860_firmwareRange≤cxtpp.052.024

lexmarkcx860_firmwareRangecxtpp.052.200–cxtpp.052.204

AND

lexmarkcx860Match-

Node

lexmarkxc6152_firmwareRange≤cxtpp.052.024

lexmarkxc6152_firmwareRangecxtpp.052.200–cxtpp.052.204

AND

lexmarkxc6152Match-

Node

lexmarkxc8155_firmwareRange≤cxtpp.052.024

lexmarkxc8155_firmwareRangecxtpp.052.200–cxtpp.052.204

AND

lexmarkxc8155Match-

Node

lexmarkxc8160_firmwareRange≤cxtpp.052.024

lexmarkxc8160_firmwareRangecxtpp.052.200–cxtpp.052.204

AND

lexmarkxc8160Match-

Node

lexmarkcx72x_firmwareRange≤cxtat.052.024

lexmarkcx72x_firmwareRangecxtat.052.200–cxtat.052.204

AND

lexmarkcx72xMatch-

Node

lexmarkxc41x0_firmwareRange≤cxtat.052.024

lexmarkxc41x0_firmwareRangecxtat.052.200–cxtat.052.204

AND

lexmarkxc41x0Match-

Node

lexmarkcx92x_firmwareRange≤cxtmh.052.024

lexmarkcx92x_firmwareRangecxtmh.052.200–cxtmh.052.204

AND

lexmarkcx92xMatch-

Node

lexmarkxc92x5_firmwareRange≤cxtmh.052.024

lexmarkxc92x5_firmwareRangecxtmh.052.200–cxtmh.052.204

AND

lexmarkxc92x5Match-

Node

lexmarkmx321_firmwareRange≤mxngm.052.024

lexmarkmx321_firmwareRangemxngm.052.200–mxngm.052.204

AND

lexmarkmx321Match-

Node

lexmarkmb2338_firmwareRange≤mxngm.052.024

lexmarkmb2338_firmwareRangemxngm.052.200–mxngm.052.204

AND

lexmarkmb2338Match-

Node

lexmarkmx42x_firmwareRange≤mxtgm.052.024

lexmarkmx42x_firmwareRangemxtgm.052.200–mxtgm.052.204

AND

lexmarkmx42xMatch-

Node

lexmarkmx52x_firmwareRange≤mxtgm.052.024

lexmarkmx52x_firmwareRangemxtgm.052.200–mxtgm.052.204

AND

lexmarkmx52xMatch-

Node

lexmarkmx622_firmwareRange≤mxtgm.052.024

lexmarkmx622_firmwareRangemxtgm.052.200–mxtgm.052.204

AND

lexmarkmx622Match-

Node

lexmarkmb2442_firmwareRange≤mxtgm.052.024

lexmarkmb2442_firmwareRangemxtgm.052.200–mxtgm.052.204

AND

lexmarkmb2442Match-

Node

lexmarkmb2546_firmwareRange≤mxtgm.052.024

lexmarkmb2546_firmwareRangemxtgm.052.200–mxtgm.052.204

AND

lexmarkmb2546Match-

Node

lexmarkmb2650_firmwareRange≤mxtgm.052.024

lexmarkmb2650_firmwareRangemxtgm.052.200–mxtgm.052.204

AND

lexmarkmb2650Match-

Node

lexmarkxm124x_firmwareRange≤mxtgm.052.024

lexmarkxm124x_firmwareRangemxtgm.052.200–mxtgm.052.204

AND

lexmarkxm124xMatch-

Node

lexmarkxm3250_firmwareRange≤mxtgm.052.024

lexmarkxm3250_firmwareRangemxtgm.052.200–mxtgm.052.204

AND

lexmarkxm3250Match-

Node

lexmarkmx72x_firmwareRange≤mxtgw.052.024

lexmarkmx72x_firmwareRangemxtgw.052.200–mxtgw.052.204

AND

lexmarkmx72xMatch-

Node

lexmarkmx82x_firmwareRange≤mxtgw.052.024

lexmarkmx82x_firmwareRangemxtgw.052.200–mxtgw.052.204

AND

lexmarkmx82xMatch-

Node

lexmarkmb2770_firmwareRange≤mxtgw.052.024

lexmarkmb2770_firmwareRangemxtgw.052.200–mxtgw.052.204

AND

lexmarkmb2770Match-

Node

lexmarkxm5370_firmwareRange≤mxtgw.052.024

lexmarkxm5370_firmwareRangemxtgw.052.200–mxtgw.052.204

AND

lexmarkxm5370Match-

Node

lexmarkxm7355_firmwareRange≤mxtgw.052.024

lexmarkxm7355_firmwareRangemxtgw.052.200–mxtgw.052.204

AND

lexmarkxm7355Match-

Node

lexmarkxm7370_firmwareRange≤mxtgw.052.024

lexmarkxm7370_firmwareRangemxtgw.052.200–mxtgw.052.204

AND

lexmarkxm7370Match-

Node

lexmarkcx421_firmwareRange≤cxnzj.052.024

lexmarkcx421_firmwareRangecxnzj.052.200–cxnzj.052.204

AND

lexmarkcx421Match-

Node

lexmarkmc2325_firmwareRange≤cxnzj.052.024

lexmarkmc2325_firmwareRangecxnzj.052.200–cxnzj.052.204

AND

lexmarkmc2325Match-

Node

lexmarkmc2425_firmwareRange≤cxnzj.052.024

lexmarkmc2425_firmwareRangecxnzj.052.200–cxnzj.052.204

AND

lexmarkmc2425Match-

Node

lexmarkcx522_firmwareRange≤cxtzj.052.024

lexmarkcx522_firmwareRangecxtzj.052.200–cxtzj.052.204

AND

lexmarkcx522Match-

Node

lexmarkcx62x_firmwareRange≤cxtzj.052.024

lexmarkcx62x_firmwareRangecxtzj.052.200–cxtzj.052.204

AND

lexmarkcx62xMatch-

Node

lexmarkmc2535_firmwareRange≤cxtzj.052.024

lexmarkmc2535_firmwareRangecxtzj.052.200–cxtzj.052.204

AND

lexmarkmc2535Match-

Node

lexmarkmc2640_firmwareRange≤cxtzj.052.024

lexmarkmc2640_firmwareRangecxtzj.052.200–cxtzj.052.204

AND

lexmarkmc2640Match-

Node

lexmarkxc2235_firmwareRange≤cxtzj.052.024

lexmarkxc2235_firmwareRangecxtzj.052.200–cxtzj.052.204

AND

lexmarkxc2235Match-

Node

lexmarkxc4240_firmwareRange≤cxtzj.052.024

lexmarkxc4240_firmwareRangecxtzj.052.200–cxtzj.052.204

AND

lexmarkxc4240Match-

CPENameOperatorVersion
lexmark:cx82x_firmwarelexmark cx82x firmwarelecxtpp.052.024
lexmark:cx82x_firmwarelexmark cx82x firmwarelecxtpp.052.204

CPE	Name	Operator	Version
lexmark:cx82x_firmware	lexmark cx82x firmware	le	cxtpp.052.024
lexmark:cx82x_firmware	lexmark cx82x firmware	le	cxtpp.052.204

References

support.lexmark.com/index?page=content&id=TE892

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.2%

JSON

Related for CVE-2018-15520

prion1 nvd1 openvas1 cvelist1