Lucene search

[email protected]CVE-2023-23560

HistoryJan 23, 2023 - 9:15 p.m.

CVE-2023-23560

2023-01-2321:15:13

CWE-918

[email protected]

web.nvd.nist.gov

119

cve-2023-23560

ssrf

lexmark

input validation

vulnerability

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

67.8%

JSON

In certain Lexmark products through 2023-01-12, SSRF can occur because of a lack of input validation.

Affected configurations

NVD

Node

lexmarkb2236_firmwareRange<mslsg.081.234

AND

lexmarkb2236Match-

Node

lexmarkb2338_firmwareRange<msngm.081.234

AND

lexmarkb2338Match-

Node

lexmarkb2442_firmwareRange<msngm.081.234

AND

lexmarkb2442Match-

Node

lexmarkb2546_firmwareRange<msngm.081.234

AND

lexmarkb2546Match-

Node

lexmarkb2650_firmwareRange<msngm.081.234

AND

lexmarkb2650Match-

Node

lexmarkb2865_firmwareRange<msngw.081.234

AND

lexmarkb2865Match-

Node

lexmarkb3340_firmwareRange<mslbd.081.234

AND

lexmarkb3340Match-

Node

lexmarkb3442_firmwareRange<mslbd.081.234

AND

lexmarkb3442Match-

Node

lexmarkc2240_firmwareRange<cstzj.081.234

AND

lexmarkc2240Match-

Node

lexmarkc2325_firmwareRange<csnzj.081.234

AND

lexmarkc2325Match-

Node

lexmarkc2326_firmwareRange<cslbn.081.234

AND

lexmarkc2326Match-

Node

lexmarkc2425_firmwareRange<csnzj.081.234

AND

lexmarkc2425Match-

Node

lexmarkc2535_firmwareRange<csnzj.081.234

AND

lexmarkc2535Match-

Node

lexmarkc3224_firmwareRange<cslbl.081.234

AND

lexmarkc3224Match-

Node

lexmarkc3326_firmwareRange<cslbl.081.234

AND

lexmarkc3326Match-

Node

lexmarkc3426_firmwareRange<cslbn.081.234

AND

lexmarkc3426Match-

Node

lexmarkc4150_firmwareRange<cstat.081.234

AND

lexmarkc4150Match-

Node

lexmarkc6160_firmwareRange<cstpp.081.234

AND

lexmarkc6160Match-

Node

lexmarkc9235_firmwareRange<cstmh.081.234

AND

lexmarkc9235Match-

Node

lexmarkcs331_firmwareRange<cslbl.081.234

AND

lexmarkcs331Match-

Node

lexmarkcs421_firmwareRange<csnzj.081.234

AND

lexmarkcs421Match-

Node

lexmarkcs431_firmwareRange<cslbn.081.234

AND

lexmarkcs431Match-

Node

lexmarkcs439_firmwareRange<cslbn.081.234

AND

lexmarkcs439Match-

Node

lexmarkcs521_firmwareRange<csnzj.081.234

AND

lexmarkcs521Match-

Node

lexmarkcs622_firmwareRange<cstzj.081.234

AND

lexmarkcs622Match-

Node

lexmarkcs720_firmwareRange<cstat.081.234

AND

lexmarkcs720Match-

Node

lexmarkcs725_firmwareRange<cstat.081.234

AND

lexmarkcs725Match-

Node

lexmarkcs727_firmwareRange<cstat.081.234

AND

lexmarkcs727Match-

Node

lexmarkcs728_firmwareRange<cstat.081.234

AND

lexmarkcs728Match-

Node

lexmarkcs820_firmwareRange<cstpp.081.234

AND

lexmarkcs820Match-

Node

lexmarkcs827_firmwareRange<cstpp.081.234

AND

lexmarkcs827Match-

Node

lexmarkcs921_firmwareRange<cstmh.081.234

AND

lexmarkcs921Match-

Node

lexmarkcs923_firmwareRange<cstmh.081.234

AND

lexmarkcs923Match-

Node

lexmarkcs927_firmwareRange<cstmh.081.234

AND

lexmarkcs927Match-

Node

lexmarkcx331_firmwareRange<cxlbl.081.234

AND

lexmarkcx331Match-

Node

lexmarkcx421_firmwareRange<cxnzj.081.234

AND

lexmarkcx421Match-

Node

lexmarkcx431_firmwareRange<cxlbn.081.234

AND

lexmarkcx431Match-

Node

lexmarkcx522_firmwareRange<cxtzj.081.234

AND

lexmarkcx522Match-

Node

lexmarkcx622_firmwareRange<cxtzj.081.234

AND

lexmarkcx622Match-

Node

lexmarkcx625_firmwareRange<cxtzj.081.234

AND

lexmarkcx625Match-

Node

lexmarkcx725_firmwareRange<cxtat.081.234

AND

lexmarkcx725Match-

Node

lexmarkcx727_firmwareRange<cxtat.081.234

AND

lexmarkcx727Match-

Node

lexmarkcx820_firmwareRange<cxtpp.081.234

AND

lexmarkcx820Match-

Node

lexmarkcx825_firmwareRange<cxtpp.081.234

AND

lexmarkcx825Match-

Node

lexmarkcx860_firmwareRange<cxtpp.081.234

AND

lexmarkcx860Match-

Node

lexmarkcx920_firmwareRange<cxtmh.081.234

AND

lexmarkcx920Match-

Node

lexmarkcx921_firmwareRange<cxtmh.081.234

AND

lexmarkcx921Match-

Node

lexmarkcx922_firmwareRange<cxtmh.081.234

AND

lexmarkcx922Match-

Node

lexmarkcx923_firmwareRange<cxtmh.081.234

AND

lexmarkcx923Match-

Node

lexmarkcx924_firmwareRange<cxtmh.081.234

AND

lexmarkcx924Match-

Node

lexmarkcx944_firmwareRange<cxtpc.081.234

AND

lexmarkcx944Match-

Node

lexmarkm1242_firmwareRange<msngm.081.234

AND

lexmarkm1242Match-

Node

lexmarkm1246_firmwareRange<msngm.081.234

AND

lexmarkm1246Match-

Node

lexmarkm1342_firmwareRange<mslbd.081.234

AND

lexmarkm1342Match-

Node

lexmarkm3250_firmwareRange<mstgm.081.234

AND

lexmarkm3250Match-

Node

lexmarkm5255_firmwareRange<mstgw.081.234

AND

lexmarkm5255Match-

Node

lexmarkm5270_firmwareRange<mstgw.081.234

AND

lexmarkm5270Match-

Node

lexmarkmb2236_firmwareRange<mxlsg.081.234

AND

lexmarkmb2236Match-

Node

lexmarkmb2338_firmwareRange<mxngm.081.234

AND

lexmarkmb2338Match-

Node

lexmarkmb2442_firmwareRange<mxtgm.081.234

AND

lexmarkmb2442Match-

Node

lexmarkmb2546_firmwareRange<mxtgm.081.234

AND

lexmarkmb2546Match-

Node

lexmarkmb2650_firmwareRange<mxtgm.081.234

AND

lexmarkmb2650Match-

Node

lexmarkmb2770_firmwareRange<mxtgw.081.234

AND

lexmarkmb2770Match-

Node

lexmarkmb3442_firmwareRange<mxlbd.081.234

AND

lexmarkmb3442Match-

Node

lexmarkmc2325_firmwareRange<cxnzj.081.234

AND

lexmarkmc2325Match-

Node

lexmarkmc2425_firmwareRange<cxnzj.081.234

AND

lexmarkmc2425Match-

Node

lexmarkmc2535_firmwareRange<cxtzj.081.234

AND

lexmarkmc2535Match-

Node

lexmarkmc2640_firmwareRange<cxtzj.081.234

AND

lexmarkmc2640Match-

Node

lexmarkmc3224_firmwareRange<cxlbl.081.234

AND

lexmarkmc3224Match-

Node

lexmarkmc3326_firmwareRange<cxlbl.081.234

AND

lexmarkmc3326Match-

Node

lexmarkmc3426_firmwareRange<cxlbn.081.234

AND

lexmarkmc3426Match-

Node

lexmarkms321_firmwareRange<msngm.081.234

AND

lexmarkms321Match-

Node

lexmarkms331_firmwareRange<mslbd.081.234

AND

lexmarkms331Match-

Node

lexmarkms421_firmwareRange<msngm.081.234

AND

lexmarkms421Match-

Node

lexmarkms431_firmwareRange<mslbd.081.234

AND

lexmarkms431Match-

Node

lexmarkms521_firmwareRange<msngm.081.234

AND

lexmarkms521Match-

Node

lexmarkms621_firmwareRange<msngm.081.234

AND

lexmarkms621Match-

Node

lexmarkms622_firmwareRange<mstgm.081.234

AND

lexmarkms622Match-

Node

lexmarkms725_firmwareRange<msngw.081.234

AND

lexmarkms725Match-

Node

lexmarkms821_firmwareRange<msngw.081.234

AND

lexmarkms821Match-

Node

lexmarkms822_firmwareRange<mstgw.081.234

AND

lexmarkms822Match-

Node

lexmarkms823_firmwareRange<msngw.081.234

AND

lexmarkms823Match-

Node

lexmarkms825_firmwareRange<msngw.081.234

AND

lexmarkms825Match-

Node

lexmarkms826_firmwareRange<mstgw.081.234

AND

lexmarkms826Match-

Node

lexmarkmx321_firmwareRange<mxngm.081.234

AND

lexmarkmx321Match-

Node

lexmarkmx331_firmwareRange<mxlbd.081.234

AND

lexmarkmx331Match-

Node

lexmarkmx421_firmwareRange<mxtgm.081.234

AND

lexmarkmx421Match-

Node

lexmarkmx431_firmwareRange<mxlbd.081.234

AND

lexmarkmx431Match-

Node

lexmarkmx432_firmwareRange<mxtct.081.234

AND

lexmarkmx432Match-

Node

lexmarkmx521_firmwareRange<mxtgm.081.234

AND

lexmarkmx521Match-

Node

lexmarkmx522_firmwareRange<mxtgm.081.234

AND

lexmarkmx522Match-

Node

lexmarkmx622_firmwareRange<mxtgm.081.234

AND

lexmarkmx622Match-

Node

lexmarkmx721_firmwareRange<mxtgw.081.234

AND

lexmarkmx721Match-

Node

lexmarkmx722_firmwareRange<mxtgw.081.234

AND

lexmarkmx722Match-

Node

lexmarkmx822_firmwareRange<mxtgw.081.234

AND

lexmarkmx822Match-

Node

lexmarkmx826_firmwareRange<mxtgw.081.234

AND

lexmarkmx826Match-

Node

lexmarkmx931_firmwareRange<mxtpm.081.234

AND

lexmarkmx931Match-

Node

lexmarkxc2235_firmwareRange<cxtzj.081.234

AND

lexmarkxc2235Match-

Node

lexmarkxc2326_firmwareRange<cxlbn.081.234

AND

lexmarkxc2326Match-

Node

lexmarkxc4140_firmwareRange<cxtat.081.234

AND

lexmarkxc4140Match-

Node

lexmarkxc4143_firmwareRange<cxtat.081.234

AND

lexmarkxc4143Match-

Node

lexmarkxc4150_firmwareRange<cxtat.081.234

AND

lexmarkxc4150Match-

Node

lexmarkxc4153_firmwareRange<cxtat.081.234

AND

lexmarkxc4153Match-

Node

lexmarkxc4240_firmwareRange<cxtzj.081.234

AND

lexmarkxc4240Match-

Node

lexmarkxc4342_firmwareRange<cxtmm.081.234

AND

lexmarkxc4342Match-

Node

lexmarkxc4352_firmwareRange<cxtmm.081.234

AND

lexmarkxc4352Match-

Node

lexmarkxc6152_firmwareRange<cxtpp.081.234

AND

lexmarkxc6152Match-

Node

lexmarkxc6153_firmwareRange<cxtpp.081.234

AND

lexmarkxc6153Match-

Node

lexmarkxc8155_firmwareRange<cxtpp.081.234

AND

lexmarkxc8155Match-

Node

lexmarkxc8160_firmwareRange<cxtpp.081.234

AND

lexmarkxc8160Match-

Node

lexmarkxc8163_firmwareRange<cxtpp.081.234

AND

lexmarkxc8163Match-

Node

lexmarkxc9225_firmwareRange<cxtmh.081.234

AND

lexmarkxc9225Match-

Node

lexmarkxc9235_firmwareRange<cxtmh.081.234

AND

lexmarkxc9235Match-

Node

lexmarkxc9245_firmwareRange<cxtmh.081.234

AND

lexmarkxc9245Match-

Node

lexmarkxc9255_firmwareRange<cxtmh.081.234

AND

lexmarkxc9255Match-

Node

lexmarkxc9265_firmwareRange<cxtmh.081.234

AND

lexmarkxc9265Match-

Node

lexmarkxc9335_firmwareRange<cxtpc.081.234

AND

lexmarkxc9335Match-

Node

lexmarkxc9445_firmwareRange<cxtpc.081.234

AND

lexmarkxc9445Match-

Node

lexmarkxc9455_firmwareRange<cxtpc.081.234

AND

lexmarkxc9455Match-

Node

lexmarkxc9465_firmwareRange<cxtpc.081.234

AND

lexmarkxc9465Match-

Node

lexmarkxm1242_firmwareRange<mxtgm.081.234

AND

lexmarkxm1242Match-

Node

lexmarkxm1246_firmwareRange<mxtgm.081.234

AND

lexmarkxm1246Match-

Node

lexmarkxm1342_firmwareRange<mslbd.081.234

AND

lexmarkxm1342Match-

Node

lexmarkxm3142_firmwareRange<mxtct.081.234

AND

lexmarkxm3142Match-

Node

lexmarkxm3250_firmwareRange<mxtgm.081.234

AND

lexmarkxm3250Match-

Node

lexmarkxm5365_firmwareRange<mxtgw.081.234

AND

lexmarkxm5365Match-

Node

lexmarkxm7355_firmwareRange<mxtgw.081.234

AND

lexmarkxm7355Match-

Node

lexmarkxm7370_firmwareRange<mxtgw.081.234

AND

lexmarkxm7370Match-

CPENameOperatorVersion
lexmark:b2236_firmwarelexmark b2236 firmwareltmslsg.081.234

CPE	Name	Operator	Version
lexmark:b2236_firmware	lexmark b2236 firmware	lt	mslsg.081.234

References

publications.lexmark.com/publications/security-alerts/CVE-2023-23560.pdf

support.lexmark.com/alerts/

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

67.8%

JSON

Related for CVE-2023-23560

cvelist1 prion1 openvas1 nvd1