Vulnerabilities > Lexmark > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-10 | CVE-2018-18894 | Path Traversal vulnerability in Lexmark products Certain older Lexmark devices (C, M, X, and 6500e before 2018-12-18) contain a directory traversal vulnerability in the embedded web server. | 5.0 |
| 2020-03-09 | CVE-2016-1487 | Deserialization of Untrusted Data vulnerability in Lexmark Markvision Enterprise 2.1 Lexmark Markvision Enterprise before 2.3.0 misuses the Apache Commons Collections Library, leading to remote code execution because of Java deserialization. | 6.8 |
| 2020-03-09 | CVE-2011-4538 | Information Exposure vulnerability in Lexmark products Lexmark X, W, T, E, and C devices before 2012-02-09 allow attackers to obtain sensitive information by reading passwords within exported settings. | 5.0 |
| 2020-03-09 | CVE-2011-3269 | Information Exposure vulnerability in Lexmark products Lexmark X, W, T, E, C, 6500e, and 25xxN devices before 2011-11-15 allow attackers to obtain sensitive information via a hidden email address in a Scan To Email shortcut. | 5.0 |
| 2019-11-21 | CVE-2019-16758 | Path Traversal vulnerability in Lexmark Services Monitor Firmware 2.27.4.0.39 In Lexmark Services Monitor 2.27.4.0.39 (running on TCP port 2070), a remote attacker can use a directory traversal technique using /../../../ or ..%2F..%2F..%2F to obtain local files on the host operating system. | 5.0 |
| 2019-08-28 | CVE-2019-10059 | 7PK - Security Features vulnerability in Lexmark products The legacy finger service (TCP port 79) is enabled by default on various older Lexmark devices. | 5.0 |
| 2019-08-28 | CVE-2019-10057 | Cross-Site Request Forgery (CSRF) vulnerability in Lexmark products Various Lexmark products have CSRF. | 4.3 |
| 2019-08-28 | CVE-2019-9935 | Missing Authentication for Critical Function vulnerability in Lexmark products Various Lexmark products have Incorrect Access Control (issue 2 of 2). | 5.0 |
| 2019-08-28 | CVE-2019-9934 | Missing Authentication for Critical Function vulnerability in Lexmark products Various Lexmark products have Incorrect Access Control (issue 1 of 2). | 5.0 |
| 2019-08-28 | CVE-2019-10058 | Unspecified vulnerability in Lexmark products Various Lexmark products have Incorrect Access Control. | 6.4 |