ZDI-CAN-26036 MEDIUM 6.3 Overdue Jan 30, 2025

Lexmark

Lexmark is a multinational imaging and printer technology company. This medium-severity vulnerability (CVSS 6.3) requires adjacent network access with no authentication and can result in limited compromises to confidentiality, integrity, and availability. Security teams should monitor for patches following the May 30, 2025 vendor deadline and consider restricting network access to Lexmark devices in the interim.

Advisory Details

Researcher Discovered by: Alain Rodel, Daniel Kilimnik, Kolja Grassmann (Neodyme AG)

Reported January 30, 2025

Deadline May 30, 2025 321d overdue

CVSS Vector AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy