Vulnerabilities > Lexmark > Scan TO Network

DATE CVE VULNERABILITY TITLE RISK
2017-09-07 CVE-2017-13771 Insufficiently Protected Credentials vulnerability in Lexmark Scan to Network 3.2.9
Lexmark Scan To Network (SNF) 3.2.9 and earlier stores network configuration credentials in plaintext and transmits them in requests, which allows remote attackers to obtain sensitive information via requests to (1) cgi-bin/direct/printer/prtappauth/apps/snfDestServlet or (2) cgi-bin/direct/printer/prtappauth/apps/ImportExportServlet.
network
low complexity
lexmark CWE-522
critical
9.8