Skip to main content

Xc4140 Firmware

3 CVEs product

Monthly

CVE-2023-23560 CRITICAL Act Now

In certain Lexmark products through 2023-01-12, SSRF can occur because of a lack of input validation. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSRF B2236 Firmware B2338 Firmware B2442 Firmware B2546 Firmware +124
NVD
CVSS 3.1
9.8
EPSS
15.0%
CVE-2023-22960 HIGH This Week

Lexmark products through 2023-01-10 have Improper Control of Interaction Frequency. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure B2236 Firmware B2338 Firmware B2442 Firmware B2546 Firmware +124
NVD
CVSS 3.1
7.5
EPSS
27.8%
CVE-2022-29850 HIGH This Week

Various Lexmark products through 2022-04-27 allow an attacker who has already compromised an affected Lexmark device to maintain persistence across reboots. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure B2236 Firmware Mb2236 Firmware Ms331 Firmware Ms431 Firmware +113
NVD
CVSS 3.1
8.1
EPSS
0.8%
EPSS 15% CVSS 9.8
CRITICAL Act Now

In certain Lexmark products through 2023-01-12, SSRF can occur because of a lack of input validation. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSRF B2236 Firmware B2338 Firmware +126
NVD
EPSS 28% CVSS 7.5
HIGH This Week

Lexmark products through 2023-01-10 have Improper Control of Interaction Frequency. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure B2236 Firmware B2338 Firmware +126
NVD
EPSS 1% CVSS 8.1
HIGH This Week

Various Lexmark products through 2022-04-27 allow an attacker who has already compromised an affected Lexmark device to maintain persistence across reboots. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure B2236 Firmware Mb2236 Firmware +115
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy