Lucene search

[email protected]CVE-2023-26067

HistoryApr 10, 2023 - 8:15 p.m.

CVE-2023-26067

2023-04-1020:15:10

CWE-20

[email protected]

web.nvd.nist.gov

lexmark

input validation

cve-2023-26067

nvd

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

0.17 Low

EPSS

Percentile

96.1%

JSON

Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 1 of 4).

Affected configurations

NVD

Node

lexmarkcxtpc_firmwareRange<cxtpc.081.232

AND

lexmarkcx930Match-

lexmarkcx931Match-

lexmarkcx942Match-

lexmarkcx943Match-

lexmarkcx944Match-

lexmarkxc9325Match-

lexmarkxc9335Match-

lexmarkxc9445Match-

lexmarkxc9455Match-

lexmarkxc9465Match-

Node

lexmarkcstpc_firmwareRange<cstpc.081.232

AND

lexmarkcs943Match-

Node

lexmarkmxtct_firmwareRange<mxtct.081.232

AND

lexmarkmx432Match-

lexmarkxm3142Match-

Node

lexmarkmxtpm_firmwareRange<mxtpm.081.232

AND

lexmarkmx931Match-

Node

lexmarkcxtmm_firmwareRange<cxtmm.081.232

AND

lexmarkcx730Match-

lexmarkcx735Match-

lexmarkxc4342Match-

lexmarkxc4352Match-

Node

lexmarkmslsg_firmwareRange<mslsg.081.232

AND

lexmarkb2236Match-

Node

lexmarkmxlsg_firmwareRange<mxlsg.081.232

AND

lexmarkmb2236Match-

Node

lexmarkmslbd_firmwareRange<mslbd.081.232

AND

lexmarkb3340Match-

lexmarkb3442Match-

lexmarkm1342Match-

lexmarkms331Match-

lexmarkms431Match-

lexmarkms439Match-

Node

lexmarkmxlbd_firmwareRange<mxlbd.081.232

AND

lexmarkmb3442Match-

lexmarkmx331Match-

lexmarkmx431Match-

lexmarkxm1342Match-

Node

lexmarkmsngm_firmwareRange<msngm.081.232

AND

lexmarkb2338Match-

lexmarkb2442Match-

lexmarkb2546Match-

lexmarkb2650Match-

lexmarkm1242Match-

lexmarkm1246Match-

lexmarkm3250Match-

lexmarkms321Match-

lexmarkms421Match-

lexmarkms521Match-

lexmarkms621Match-

lexmarkms622Match-

Node

lexmarkmxngm_firmwareRange<mxngm.081.232

AND

lexmarkmb2338Match-

lexmarkmx321Match-

Node

lexmarkmxtgm_firmwareRange<mxtgm.081.232

AND

lexmarkmb2442Match-

lexmarkmb2546Match-

lexmarkmb2650Match-

lexmarkmx421Match-

lexmarkmx521Match-

lexmarkmx522Match-

lexmarkmx622Match-

lexmarkxm1242Match-

lexmarkxm1246Match-

lexmarkxm3250Match-

Node

lexmarkmsngw_firmwareRange<msngw.081.232

AND

lexmarkb2865Match-

lexmarkms725Match-

lexmarkms821Match-

lexmarkms823Match-

lexmarkms825Match-

Node

lexmarkmstgw_firmwareRange<mstgw.081.232

AND

lexmarkm5255Match-

lexmarkm5270Match-

lexmarkms822Match-

lexmarkms826Match-

Node

lexmarkmxtgw_firmwareRange<mxtgw.081.232

AND

lexmarkmb2770Match-

lexmarkmx721Match-

lexmarkmx722Match-

lexmarkmx725Match-

lexmarkmx822Match-

lexmarkmx826Match-

lexmarkxm5365Match-

lexmarkxm5370Match-

lexmarkxm7355Match-

lexmarkxm7370Match-

Node

lexmarkcslbn_firmwareRange<cslbn.081.232

AND

lexmarkc3426Match-

lexmarkcs431Match-

lexmarkcs439Match-

Node

lexmarkcslbl_firmwareRange<cslbl.081.232

AND

lexmarkc3224Match-

lexmarkc3326Match-

lexmarkcs331Match-

Node

lexmarkcslbn_firmwareRange<cslbn.081.232

AND

lexmarkc2326Match-

Node

lexmarkcxlbn_firmwareRange<cxlbn.081.232

AND

lexmarkcx431Match-

lexmarkmc3426Match-

lexmarkxc2326Match-

Node

lexmarkcxlbl_firmwareRange<cxlbl.081.232

AND

lexmarkmc3224Match-

lexmarkmc3326Match-

Node

lexmarkcsnzj_firmwareRange<csnzj.081.232

AND

lexmarkc2325Match-

lexmarkc2425Match-

lexmarkc2535Match-

lexmarkcs421Match-

lexmarkcs521Match-

Node

lexmarkcxtzj_firmwareRange<cxtzj.081.232

AND

lexmarkcx522Match-

lexmarkcx622Match-

lexmarkcx625Match-

lexmarkmc2535Match-

lexmarkmc2640Match-

lexmarkxc2235Match-

lexmarkxc4240Match-

Node

lexmarkcxnzj_firmwareRange<cxnzj.081.232

AND

lexmarkcx421Match-

lexmarkmc2325Match-

lexmarkmc2425Match-

Node

lexmarkcxtpp_firmwareRange<cxtpp.081.233

AND

lexmarkcx820Match-

lexmarkcx825Match-

lexmarkcx827Match-

lexmarkcx86Match-

lexmarkxc6152Match-

lexmarkxc6153Match-

lexmarkxc8155Match-

lexmarkxc8160Match-

lexmarkxc8163Match-

Node

lexmarkcxtpp_firmwareRange<cstpp.081.233

AND

lexmarkc6160Match-

lexmarkcs820Match-

lexmarkcs827Match-

Node

lexmarkcstat_firmwareRange<cstat.081.233

AND

lexmarkc4150Match-

lexmarkcs720Match-

lexmarkcs725Match-

lexmarkcs727Match-

lexmarkcs728Match-

Node

lexmarkcxtat_firmwareRange<cxtat.081.233

AND

lexmarkcx725Match-

lexmarkcx727Match-

lexmarkxc4140Match-

lexmarkxc4143Match-

lexmarkxc4150Match-

lexmarkxc4153Match-

Node

lexmarkcstmh_firmwareRange<cstmh.081.233

AND

lexmarkcs921Match-

lexmarkcs923Match-

lexmarkcs927Match-

Node

lexmarkcstmh_firmwareRange<cstmx.081.233

AND

lexmarkc923Match-

lexmarkcx920Match-

lexmarkcx921Match-

lexmarkcx922Match-

lexmarkcx923Match-

lexmarkcx924Match-

lexmarkxc9225Match-

lexmarkxc9235Match-

lexmarkxc9245Match-

lexmarkxc9255Match-

lexmarkxc9265Match-

CPENameOperatorVersion
lexmark:cxtpc_firmwarelexmark cxtpc firmwareltcxtpc.081.232

CPE	Name	Operator	Version
lexmark:cxtpc_firmware	lexmark cxtpc firmware	lt	cxtpc.081.232

References

packetstormsecurity.com/files/174763/Lexmark-Device-Embedded-Web-Server-Remote-Code-Execution.html

publications.lexmark.com/publications/security-alerts/CVE-2023-26067.pdf

support.lexmark.com/alerts/

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

0.17 Low

EPSS

Percentile

96.1%

JSON

Related for CVE-2023-26067

cvelist1 zdi3 prion1 nuclei1 nvd1 githubexploit2 packetstorm1 openvas1 metasploit1 zdt1