CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
72.6%
Certain older Lexmark devices (C, M, X, and 6500e before 2018-12-18) contain a directory traversal vulnerability in the embedded web server.
Vendor | Product | Version | CPE |
---|---|---|---|
lexmark | 6500e | - | cpe:2.3:h:lexmark:6500e:-:*:*:*:*:*:*:* |
lexmark | 6500e_firmware | * | cpe:2.3:o:lexmark:6500e_firmware:*:*:*:*:*:*:*:* |
lexmark | c748 | - | cpe:2.3:h:lexmark:c748:-:*:*:*:*:*:*:* |
lexmark | c748_firmware | * | cpe:2.3:o:lexmark:c748_firmware:*:*:*:*:*:*:*:* |
lexmark | c79x | - | cpe:2.3:h:lexmark:c79x:-:*:*:*:*:*:*:* |
lexmark | c79x_firmware | * | cpe:2.3:o:lexmark:c79x_firmware:*:*:*:*:*:*:*:* |
lexmark | c925 | - | cpe:2.3:h:lexmark:c925:-:*:*:*:*:*:*:* |
lexmark | c925_firmware | * | cpe:2.3:o:lexmark:c925_firmware:*:*:*:*:*:*:*:* |
lexmark | c95x | - | cpe:2.3:h:lexmark:c95x:-:*:*:*:*:*:*:* |
lexmark | c95x_firmware | * | cpe:2.3:o:lexmark:c95x_firmware:*:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
72.6%