Vulnerabilities > Lexmark

DATE CVE VULNERABILITY TITLE RISK
2020-01-27 CVE-2014-8742 Path Traversal vulnerability in Lexmark Markvision Enterprise
Directory traversal vulnerability in the ReportDownloadServlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to read arbitrary files via unspecified vectors.
network
low complexity
lexmark CWE-22
7.8
2020-01-27 CVE-2014-8741 Path Traversal vulnerability in Lexmark Markvision Enterprise
Directory traversal vulnerability in the GfdFileUploadServerlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to write to arbitrary files via unspecified vectors.
network
low complexity
lexmark CWE-22
critical
10.0
2019-11-21 CVE-2019-16758 Path Traversal vulnerability in Lexmark Services Monitor Firmware 2.27.4.0.39
In Lexmark Services Monitor 2.27.4.0.39 (running on TCP port 2070), a remote attacker can use a directory traversal technique using /../../../ or ..%2F..%2F..%2F to obtain local files on the host operating system.
network
low complexity
lexmark CWE-22
5.0
2019-08-28 CVE-2019-9933 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Lexmark products
Various Lexmark products have a Buffer Overflow (issue 3 of 3).
network
low complexity
lexmark CWE-119
critical
10.0
2019-08-28 CVE-2019-9932 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Lexmark products
Various Lexmark products have a Buffer Overflow (issue 2 of 3).
network
low complexity
lexmark CWE-119
critical
10.0
2019-08-28 CVE-2019-9931 Improper Input Validation vulnerability in Lexmark products
Various Lexmark printers contain a denial of service vulnerability in the SNMP service that can be exploited to crash the device.
network
low complexity
lexmark CWE-20
7.8
2019-08-28 CVE-2019-9930 Integer Overflow or Wraparound vulnerability in Lexmark products
Various Lexmark products have an Integer Overflow.
network
low complexity
lexmark CWE-190
critical
10.0
2019-08-28 CVE-2019-10059 7PK - Security Features vulnerability in Lexmark products
The legacy finger service (TCP port 79) is enabled by default on various older Lexmark devices.
network
low complexity
lexmark CWE-254
5.0
2019-08-28 CVE-2019-10057 Cross-Site Request Forgery (CSRF) vulnerability in Lexmark products
Various Lexmark products have CSRF.
network
lexmark CWE-352
4.3
2019-08-28 CVE-2019-9935 Missing Authentication for Critical Function vulnerability in Lexmark products
Various Lexmark products have Incorrect Access Control (issue 2 of 2).
network
low complexity
lexmark CWE-306
5.0