← Zuruck zu CVEs
CVE-2023-26068
CRITICAL9.8
Beschreibung
Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 2 of 4).
CVE Details
CVSS v3.1 Bewertung9.8
SchweregradCRITICAL
CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AngriffsvektorNETWORK
KomplexitatLOW
Erforderliche PrivilegienNONE
BenutzerinteraktionNONE
Veroffentlicht4/10/2023
Zuletzt geandert5/5/2025
Quellenvd
Honeypot-Sichtungen0
Betroffene Produkte
lexmark:b2236lexmark:b2338lexmark:b2442lexmark:b2546lexmark:b2650lexmark:b2865lexmark:b3340lexmark:b3442lexmark:c2325lexmark:c2326lexmark:c2425lexmark:c2535lexmark:c3224lexmark:c3326lexmark:c3426lexmark:c4150lexmark:c6160lexmark:cs331lexmark:cs421lexmark:cs431lexmark:cs439lexmark:cs521lexmark:cs720lexmark:cs725lexmark:cs727lexmark:cs728lexmark:cs820lexmark:cs827lexmark:cs921lexmark:cs923lexmark:cs927lexmark:cs943lexmark:cslbl_firmwarelexmark:cslbn_firmwarelexmark:csnzj_firmwarelexmark:cstat_firmwarelexmark:cstmh_firmwarelexmark:cstpc_firmwarelexmark:cx421lexmark:cx431lexmark:cx522lexmark:cx622lexmark:cx625lexmark:cx725lexmark:cx727lexmark:cx730lexmark:cx735lexmark:cx820lexmark:cx825lexmark:cx827lexmark:cx86lexmark:cx930lexmark:cx931lexmark:cx942lexmark:cx943lexmark:cx944lexmark:cxlbl_firmwarelexmark:cxlbn_firmwarelexmark:cxnzj_firmwarelexmark:cxtat_firmwarelexmark:cxtmm_firmwarelexmark:cxtpc_firmwarelexmark:cxtpp_firmwarelexmark:cxtzj_firmwarelexmark:m1242lexmark:m1246lexmark:m1342lexmark:m3250lexmark:m5255lexmark:m5270lexmark:mb2236lexmark:mb2338lexmark:mb2442lexmark:mb2546lexmark:mb2650lexmark:mb2770lexmark:mb3442lexmark:mc2325lexmark:mc2425lexmark:mc2535lexmark:mc2640lexmark:mc3224lexmark:mc3326lexmark:mc3426lexmark:ms321lexmark:ms331lexmark:ms421lexmark:ms431lexmark:ms439lexmark:ms521lexmark:ms621lexmark:ms622lexmark:ms725lexmark:ms821lexmark:ms822lexmark:ms823lexmark:ms825lexmark:ms826lexmark:mslbd_firmwarelexmark:mslsg_firmwarelexmark:msngm_firmwarelexmark:msngw_firmwarelexmark:mstgw_firmwarelexmark:mx321lexmark:mx331lexmark:mx421lexmark:mx431lexmark:mx432lexmark:mx521lexmark:mx522lexmark:mx622lexmark:mx721lexmark:mx722lexmark:mx725lexmark:mx822lexmark:mx826lexmark:mx931lexmark:mxlbd_firmwarelexmark:mxlsg_firmwarelexmark:mxngm_firmwarelexmark:mxtct_firmwarelexmark:mxtgm_firmwarelexmark:mxtgw_firmwarelexmark:mxtpm_firmwarelexmark:xc2235lexmark:xc2326lexmark:xc4140lexmark:xc4143lexmark:xc4150lexmark:xc4153lexmark:xc4240lexmark:xc4342lexmark:xc4352lexmark:xc6152lexmark:xc6153lexmark:xc8155lexmark:xc8160lexmark:xc8163lexmark:xc9325lexmark:xc9335lexmark:xc9445lexmark:xc9455lexmark:xc9465lexmark:xm1242lexmark:xm1246lexmark:xm1342lexmark:xm3142lexmark:xm3250lexmark:xm5365lexmark:xm5370lexmark:xm7355lexmark:xm7370
Schwachen (CWE)
CWE-20CWE-20
Referenzen
http://packetstormsecurity.com/files/174763/Lexmark-Device-Embedded-Web-Server-Remote-Code-Execution.html(cve@mitre.org)
https://support.lexmark.com/alerts/(cve@mitre.org)
http://packetstormsecurity.com/files/174763/Lexmark-Device-Embedded-Web-Server-Remote-Code-Execution.html(af854a3a-2127-422b-91ae-364da2661108)
https://publications.lexmark.com/publications/security-alerts/CVE-2023-26068.pdf(af854a3a-2127-422b-91ae-364da2661108)
https://support.lexmark.com/alerts/(af854a3a-2127-422b-91ae-364da2661108)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.