Vulnerability Description
Lexmark X, W, T, E, and C devices before 2012-02-09 allow attackers to obtain sensitive information by reading passwords within exported settings.
CVSS Score
5.3
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Lexmark | X860 Firmware | <= lp.sp.p108 |
| Lexmark | X860 | - |
| Lexmark | X862 Firmware | <= lp.sp.p108 |
| Lexmark | X862 | - |
| Lexmark | X864 Firmware | <= lp.sp.p108 |
| Lexmark | X864 | - |
| Lexmark | X734 Firmware | <= lr.fl.p224c |
| Lexmark | X734 | - |
| Lexmark | X736 Firmware | <= lr.fl.p224c |
| Lexmark | X736 | - |
| Lexmark | X738 Firmware | <= lr.fl.p224c |
| Lexmark | X738 | - |
| Lexmark | X651 Firmware | <= lr.mn.p224a |
| Lexmark | X651 | - |
| Lexmark | X652 Firmware | <= lr.mn.p224a |
| Lexmark | X652 | - |
| Lexmark | X654 Firmware | <= lr.mn.p224a |
| Lexmark | X654 | - |
| Lexmark | X656 Firmware | <= lr.mn.p224a |
| Lexmark | X656 | - |
Related Weaknesses (CWE)
References
- http://contentdelivery.lexmark.com/webcontent/CVE-2011-4538.pdfThird Party Advisory
- http://contentdelivery.lexmark.com/webcontent/CVE-2011-4538.pdfThird Party Advisory
FAQ
What is CVE-2011-4538?
CVE-2011-4538 is a vulnerability with a CVSS score of 5.3 (MEDIUM). Lexmark X, W, T, E, and C devices before 2012-02-09 allow attackers to obtain sensitive information by reading passwords within exported settings.
How severe is CVE-2011-4538?
CVE-2011-4538 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-4538?
Check the references section above for vendor advisories and patch information. Affected products include: Lexmark X860 Firmware, Lexmark X860, Lexmark X862 Firmware, Lexmark X862, Lexmark X864 Firmware.