Lexmark M1140

18 CVEs affecting Lexmark M1140. Latest disclosed: 2023-09-01. Critical: 6, High: 3.

Top CVEs affecting Lexmark M1140
CVESeverityScorePublishedSummary
CVE-2021-44734Critical9.82022-01-20Embedded web server input sanitization vulnerability in Lexmark devices through 2021-12-07, which can which can lead to remote code execution on the device.
CVE-2021-44738Critical9.82022-01-20Buffer overflow vulnerability has been identified in Lexmark devices through 2021-12-07 in postscript interpreter.
CVE-2019-9933Critical9.82019-08-28Various Lexmark products have a Buffer Overflow (issue 3 of 3).
CVE-2019-9932Critical9.82019-08-28Various Lexmark products have a Buffer Overflow (issue 2 of 3).
CVE-2019-9930Critical9.82019-08-28Various Lexmark products have an Integer Overflow.
CVE-2019-10058Critical9.12019-08-28Various Lexmark products have Incorrect Access Control.
CVE-2021-44737High8.82022-01-20PJL directory traversal vulnerability in Lexmark devices through 2021-12-07 that can be leveraged to overwrite internal configuration files.
CVE-2023-40239High7.52023-09-01Certain Lexmark devices (such as CS310) before 2023-08-25 allow XXE attacks, leading to information disclosure. The fixed firmware version is LW80.*.P246, i.e…
CVE-2019-9931High7.52019-08-28Various Lexmark printers contain a denial of service vulnerability in the SNMP service that can be exploited to crash the device.
CVE-2019-10057Medium6.52019-08-28Various Lexmark products have CSRF.
CVE-2020-10094Medium5.42020-04-28A cross-site scripting (XSS) vulnerability in Lexmark CS31x before LW74.VYL.P273; CS41x before LW74.VY2.P273; CS51x before LW74.VY4.P273; CX310 before LW74.GM2…
CVE-2020-10093Medium5.42020-04-28A cross-site scripting (XSS) vulnerability in Lexmark Pro910 series inkjet and other discontinued products.
CVE-2019-19773Medium5.42020-03-06Various Lexmark products have stored XSS in the embedded web server used in older generation Lexmark devices. Affected products are available in http://support…
CVE-2019-19772Medium5.42020-03-06Various Lexmark products have reflected XSS in the embedded web server used in older generation Lexmark devices. Affected products are available in http://supp…
CVE-2019-18791Medium5.42020-02-13Lexmark printer MS812 and multiple older generation Lexmark devices have a stored XSS vulnerability in the embedded web server. The vulnerability can be exploi…
CVE-2019-10059Medium5.32019-08-28The legacy finger service (TCP port 79) is enabled by default on various older Lexmark devices.
CVE-2019-9935Medium5.32019-08-28Various Lexmark products have Incorrect Access Control (issue 2 of 2).
CVE-2019-9934Medium5.32019-08-28Various Lexmark products have Incorrect Access Control (issue 1 of 2).