Vulnerabilities > Lexmark > Critical

DATE CVE VULNERABILITY TITLE RISK
2017-09-07 CVE-2017-13771 Insufficiently Protected Credentials vulnerability in Lexmark Scan to Network 3.2.9
Lexmark Scan To Network (SNF) 3.2.9 and earlier stores network configuration credentials in plaintext and transmits them in requests, which allows remote attackers to obtain sensitive information via requests to (1) cgi-bin/direct/printer/prtappauth/apps/snfDestServlet or (2) cgi-bin/direct/printer/prtappauth/apps/ImportExportServlet.
network
low complexity
lexmark CWE-522
critical
9.8
2017-01-06 CVE-2016-4336 Out-of-bounds Write vulnerability in Lexmark Perceptive Document Filters
An exploitable out-of-bounds write exists in the Bzip2 parsing of the Lexmark Perspective Document Filters conversion functionality.
network
low complexity
lexmark CWE-787
critical
9.8
2016-01-27 CVE-2016-1896 7PK - Security Features vulnerability in Lexmark Printer Firmware
Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypass authentication by leveraging incorrect detection of the security-jumper status.
network
low complexity
lexmark CWE-254
critical
9.8