Vulnerabilities > Lexmark > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-04-10 CVE-2023-26063 Type Confusion vulnerability in Lexmark products
Certain Lexmark devices through 2023-02-19 access a Resource By Using an Incompatible Type.
network
low complexity
lexmark CWE-843
critical
9.8
2023-04-10 CVE-2023-26064 Out-of-bounds Write vulnerability in Lexmark products
Certain Lexmark devices through 2023-02-19 have an Out-of-bounds Write.
network
low complexity
lexmark CWE-787
critical
9.8
2023-04-10 CVE-2023-26065 Integer Overflow or Wraparound vulnerability in Lexmark products
Certain Lexmark devices through 2023-02-19 have an Integer Overflow.
network
low complexity
lexmark CWE-190
critical
9.8
2023-04-10 CVE-2023-26066 Improper Validation of Array Index vulnerability in Lexmark products
Certain Lexmark devices through 2023-02-19 have Improper Validation of an Array Index.
network
low complexity
lexmark CWE-129
critical
9.8
2023-04-10 CVE-2023-26068 Improper Input Validation vulnerability in Lexmark products
Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 2 of 4).
network
low complexity
lexmark CWE-20
critical
9.8
2023-04-10 CVE-2023-26069 Improper Input Validation vulnerability in Lexmark products
Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 3 of 4).
network
low complexity
lexmark CWE-20
critical
9.8
2023-04-10 CVE-2023-26070 Improper Input Validation vulnerability in Lexmark products
Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 4 of 4).
network
low complexity
lexmark CWE-20
critical
9.8
2023-01-23 CVE-2023-23560 Server-Side Request Forgery (SSRF) vulnerability in Lexmark products
In certain Lexmark products through 2023-01-12, SSRF can occur because of a lack of input validation.
network
low complexity
lexmark CWE-918
critical
9.8
2022-01-20 CVE-2021-44734 Code Injection vulnerability in Lexmark products
Embedded web server input sanitization vulnerability in Lexmark devices through 2021-12-07, which can which can lead to remote code execution on the device.
network
low complexity
lexmark CWE-94
critical
9.8
2022-01-20 CVE-2021-44735 Command Injection vulnerability in Lexmark products
Embedded web server command injection vulnerability in Lexmark devices through 2021-12-07.
network
low complexity
lexmark CWE-77
critical
9.8