Search Results | AttackerKB

Various Lexmark products through 2022-04-27 allow an attacker who has already compromised an affected Lexmark device to maintain persistence across reboots.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2022-24935

Disclosure Date: April 28, 2022 (last updated October 07, 2023)

Lexmark products through 2022-02-10 have Incorrect Access Control.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2021-44737

Disclosure Date: January 20, 2022 (last updated October 07, 2023)

PJL directory traversal vulnerability in Lexmark devices through 2021-12-07 that can be leveraged to overwrite internal configuration files.

Attack Vector: Adjacent Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2021-44736

Disclosure Date: January 20, 2022 (last updated October 07, 2023)

The initial admin account setup wizard on Lexmark devices allow unauthenticated access to the “out of service erase” feature.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2021-44735

Disclosure Date: January 20, 2022 (last updated October 07, 2023)

Embedded web server command injection vulnerability in Lexmark devices through 2021-12-07.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2021-44734

Disclosure Date: January 20, 2022 (last updated October 07, 2023)

Embedded web server input sanitization vulnerability in Lexmark devices through 2021-12-07, which can which can lead to remote code execution on the device.

Attack Vector: Network Privileges: None User Interaction: None

79 Total Results

Displaying 21-30 of 79

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Quick Cookie Notification