Vulnerabilities > Lexmark > Xc4150
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-03-12 | CVE-2018-17944 | Information Exposure vulnerability in Lexmark products On certain Lexmark devices that communicate with an LDAP or SMTP server, a malicious administrator can discover LDAP or SMTP credentials by changing that server's hostname to one that they control, and then capturing the credentials that are sent there. | 4.0 |
2016-04-22 | CVE-2016-3145 | Information Exposure vulnerability in Lexmark Printer Firmware Lexmark printers with firmware ATL before ATL.021.063, CB before CB.021.063, PP before PP.021.063, and YK before YK.021.063 mishandle Erase Printer Memory and Erase Hard Disk actions, which allows physically proximate attackers to obtain sensitive information via direct read operations on non-volatile memory. | 2.1 |
2016-01-27 | CVE-2016-1896 | Permissions, Privileges, and Access Controls vulnerability in Lexmark Printer Firmware Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypass authentication by leveraging incorrect detection of the security-jumper status. | 10.0 |