Lexmark B2546_firmware
7 CVEs affecting Lexmark B2546_firmware. Latest disclosed: 2023-01-23. Critical: 4, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-23560 | Critical | 9.8 | 2023-01-23 | In certain Lexmark products through 2023-01-12, SSRF can occur because of a lack of input validation. |
CVE-2021-44735 | Critical | 9.8 | 2022-01-20 | Embedded web server command injection vulnerability in Lexmark devices through 2021-12-07. |
CVE-2021-44734 | Critical | 9.8 | 2022-01-20 | Embedded web server input sanitization vulnerability in Lexmark devices through 2021-12-07, which can which can lead to remote code execution on the device. |
CVE-2021-44738 | Critical | 9.8 | 2022-01-20 | Buffer overflow vulnerability has been identified in Lexmark devices through 2021-12-07 in postscript interpreter. |
CVE-2021-44737 | High | 8.8 | 2022-01-20 | PJL directory traversal vulnerability in Lexmark devices through 2021-12-07 that can be leveraged to overwrite internal configuration files. |
CVE-2022-29850 | High | 8.1 | 2022-08-26 | Various Lexmark products through 2022-04-27 allow an attacker who has already compromised an affected Lexmark device to maintain persistence across reboots. |
CVE-2023-22960 | High | 7.5 | 2023-01-23 | Lexmark products through 2023-01-10 have Improper Control of Interaction Frequency. |