Vulnerability Description
Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 1 of 4).
CVSS Score
8.1
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Lexmark | Cxtpc Firmware | < cxtpc.081.232 |
| Lexmark | Cx930 | - |
| Lexmark | Cx931 | - |
| Lexmark | Cx942 | - |
| Lexmark | Cx943 | - |
| Lexmark | Cx944 | - |
| Lexmark | Xc9325 | - |
| Lexmark | Xc9335 | - |
| Lexmark | Xc9445 | - |
| Lexmark | Xc9455 | - |
| Lexmark | Xc9465 | - |
| Lexmark | Cstpc Firmware | < cstpc.081.232 |
| Lexmark | Cs943 | - |
| Lexmark | Mxtct Firmware | < mxtct.081.232 |
| Lexmark | Mx432 | - |
| Lexmark | Xm3142 | - |
| Lexmark | Mxtpm Firmware | < mxtpm.081.232 |
| Lexmark | Mx931 | - |
| Lexmark | Cxtmm Firmware | < cxtmm.081.232 |
| Lexmark | Cx730 | - |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/174763/Lexmark-Device-Embedded-Web-Server-R
- https://publications.lexmark.com/publications/security-alerts/CVE-2023-26067.pdfVendor Advisory
- https://support.lexmark.com/alerts/Vendor Advisory
- http://packetstormsecurity.com/files/174763/Lexmark-Device-Embedded-Web-Server-R
- https://publications.lexmark.com/publications/security-alerts/CVE-2023-26067.pdfVendor Advisory
- https://support.lexmark.com/alerts/Vendor Advisory
FAQ
What is CVE-2023-26067?
CVE-2023-26067 is a vulnerability with a CVSS score of 8.1 (HIGH). Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 1 of 4).
How severe is CVE-2023-26067?
CVE-2023-26067 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-26067?
Check the references section above for vendor advisories and patch information. Affected products include: Lexmark Cxtpc Firmware, Lexmark Cx930, Lexmark Cx931, Lexmark Cx942, Lexmark Cx943.