Action not permitted
Modal body text goes here.
Modal Title
Modal Body
WID-SEC-W-2025-0375
Vulnerability from csaf_certbund - Published: 2025-02-13 23:00 - Updated: 2025-02-13 23:00Summary
Lexmark Laser Printers: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Lexmark ist ein Hersteller von Druckern und Druckerzubehör.
Angriff
Ein Angreifer kann mehrere Schwachstellen in Lexmark Laserdruckern und dem Print Management Client ausnutzen, um beliebigen Code auszuführen und Sicherheitsmaßnahmen zu umgehen.
Betroffene Betriebssysteme
- BIOS/Firmware
- Hardware Appliance
- Windows
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Lexmark ist ein Hersteller von Druckern und Druckerzubeh\u00f6r.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in Lexmark Laserdruckern und dem Print Management Client ausnutzen, um beliebigen Code auszuf\u00fchren und Sicherheitsma\u00dfnahmen zu umgehen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- BIOS/Firmware\n- Hardware Appliance\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-0375 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0375.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-0375 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0375"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2024-11344 vom 2025-02-13",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11344"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2024-11345 vom 2025-02-13",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11345"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2024-11346 vom 2025-02-13",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11346"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2024-11347 vom 2025-02-13",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11347"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2024-11348 vom 2025-02-13",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11348"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2025-1126 vom 2025-02-13",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-1126"
},
{
"category": "external",
"summary": "Lexmark Security Advisories abgerufen am 2024-02-14",
"url": "https://www.lexmark.com/en_us/solutions/security/lexmark-security-advisories.html"
}
],
"source_lang": "en-US",
"title": "Lexmark Laser Printers: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-02-13T23:00:00.000+00:00",
"generator": {
"date": "2025-02-14T11:21:51.454+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.12"
}
},
"id": "WID-SEC-W-2025-0375",
"initial_release_date": "2025-02-13T23:00:00.000+00:00",
"revision_history": [
{
"date": "2025-02-13T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Lexmark Laser Printers",
"product": {
"name": "Lexmark Laser Printers",
"product_id": "T041220",
"product_identification_helper": {
"cpe": "cpe:/h:lexmark:laser_printer:-"
}
}
},
{
"category": "product_version_range",
"name": "Management Client \u003c3.5.0",
"product": {
"name": "Lexmark Laser Printers Management Client \u003c3.5.0",
"product_id": "T041235"
}
},
{
"category": "product_version",
"name": "Management Client 3.5.0",
"product": {
"name": "Lexmark Laser Printers Management Client 3.5.0",
"product_id": "T041235-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:lexmark:laser_printer:management_client__3.5.0"
}
}
}
],
"category": "product_name",
"name": "Laser Printers"
}
],
"category": "vendor",
"name": "Lexmark"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-11344",
"product_status": {
"known_affected": [
"T041220"
]
},
"release_date": "2025-02-13T23:00:00.000+00:00",
"title": "CVE-2024-11344"
},
{
"cve": "CVE-2024-11345",
"product_status": {
"known_affected": [
"T041220"
]
},
"release_date": "2025-02-13T23:00:00.000+00:00",
"title": "CVE-2024-11345"
},
{
"cve": "CVE-2024-11346",
"product_status": {
"known_affected": [
"T041220"
]
},
"release_date": "2025-02-13T23:00:00.000+00:00",
"title": "CVE-2024-11346"
},
{
"cve": "CVE-2024-11347",
"product_status": {
"known_affected": [
"T041220"
]
},
"release_date": "2025-02-13T23:00:00.000+00:00",
"title": "CVE-2024-11347"
},
{
"cve": "CVE-2024-11348",
"product_status": {
"known_affected": [
"T041220"
]
},
"release_date": "2025-02-13T23:00:00.000+00:00",
"title": "CVE-2024-11348"
},
{
"cve": "CVE-2025-1126",
"product_status": {
"known_affected": [
"T041235"
]
},
"release_date": "2025-02-13T23:00:00.000+00:00",
"title": "CVE-2025-1126"
}
]
}
CVE-2024-11344 (GCVE-0-2024-11344)
Vulnerability from cvelistv5 – Published: 2025-02-13 18:51 – Updated: 2025-02-13 19:19
VLAI?
EPSS
Summary
A type confusion vulnerability has been identified in the Postscript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code.
Severity ?
7.3 (High)
CWE
- CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Lexmark | CX, XC, CS, MS, MX, XM, et. al. |
Affected:
0 , ≤ CXTLS.240.076
(custom)
Affected: CXTLS.240.200 , < * (custom) Affected: 0 , ≤ MXTLS.240.076 (custom) Affected: MXTLS.240.200 , < * (custom) Affected: 0 , ≤ CSTLS.240.076 (custom) Affected: CSTLS.240.200 , < * (custom) Affected: 0 , ≤ MSNSN.240.042 (custom) Affected: MSNSN.240.200 , < * (custom) Affected: 0 , ≤ MSTSN.240.042 (custom) Affected: MSTSN.240.200 , < * (custom) Affected: 0 , ≤ MXTSN.240.042 (custom) Affected: MXTSN.240.200 , < * (custom) Affected: 0 , ≤ CSNGV.240.042 (custom) Affected: CSNGV.240.200 , < * (custom) Affected: 0 , ≤ CSTGV.240.042 (custom) Affected: CSTGV.240.200 , < * (custom) Affected: 0 , ≤ CXTGV.240.042 (custom) Affected: CXTGV.240.200 , < * (custom) Affected: 0 , ≤ CXTPC.240.042 (custom) Affected: CXTPC.240.200 , < * (custom) Affected: 0 , ≤ CSTPC.240.042 (custom) Affected: CSTPC.240.200 , < * (custom) Affected: 0 , ≤ MXTCT.240.042 (custom) Affected: MXTCT.240.200 , < * (custom) Affected: 0 , ≤ MXTPM.240.042 (custom) Affected: MXTPM.240.200 , < * (custom) Affected: 0 , ≤ CXTMM.240.042 (custom) Affected: CXTMM.240.200 , < * (custom) Affected: 0 , ≤ CSTMM.240.042 (custom) Affected: CSTMM.240.200 , < * (custom) Affected: 0 , ≤ CSTZJ.240.042 (custom) Affected: CSTZJ.240.200 , < * (custom) Affected: 0 , ≤ CSNZJ.240.042 (custom) Affected: CSNZJ.240.200 , < * (custom) Affected: 0 , ≤ CXTZJ.240.042 (custom) Affected: CXTZJ.240.200 , < * (custom) Affected: 0 , ≤ CXNZJ.240.042 (custom) Affected: CXNZJ.240.200 , < * (custom) Affected: 0 , ≤ MSNGM.240.042 (custom) Affected: MSNGM.240.200 , < * (custom) Affected: 0 , ≤ MSTGM.240.042 (custom) Affected: MSTGM.240.200 , < * (custom) Affected: 0 , ≤ MXNGM.240.042 (custom) Affected: MXNGM.240.200 , < * (custom) Affected: 0 , ≤ MXTGM.240.042 (custom) Affected: MXTGM.240.200 , < * (custom) Affected: 0 , ≤ MSNGW.240.042 (custom) Affected: MSNGW.240.200 , < * (custom) Affected: 0 , ≤ MSTGW.240.042 (custom) Affected: MSTGW.240.200 , < * (custom) Affected: 0 , ≤ MXTGW.240.042 (custom) Affected: MXTGW.240.200 , < * (custom) Affected: 0 , ≤ MSLSG.230.401 (custom) Affected: 0 , ≤ MXLSG.230.401 (custom) Affected: 0 , ≤ MSLBD.230.401 (custom) Affected: 0 , ≤ MXLBD.230.401 (custom) Affected: 0 , ≤ CSLBN.230.401 (custom) Affected: 0 , ≤ CSLBL.230.401 (custom) Affected: 0 , ≤ CXLBN.230.401 (custom) Affected: 0 , ≤ CXLBL.230.401 (custom) Affected: 0 , ≤ CXTPP.230.401 (custom) Affected: 0 , ≤ CSTPP.230.401 (custom) Affected: 0 , ≤ CSTAT.230.401 (custom) Affected: 0 , ≤ CXTAT.230.401 (custom) Affected: 0 , ≤ CSTMH.230.401 (custom) Affected: 0 , ≤ CXTMH.230.401 (custom) Affected: 0 , ≤ LW90.TL2.P215 (custom) Affected: 0 , ≤ LW90.PR2.P215 (custom) Affected: 0 , ≤ LW90.PR4.P215 (custom) Affected: 0 , ≤ LW90.SB4.P215 (custom) Affected: 0 , ≤ LW90.SB7.P215 (custom) Affected: 0 , ≤ LW90.DN2.P215 (custom) Affected: 0 , ≤ LW90.DN4.P215 (custom) Affected: 0 , ≤ LW90.DN7.P215 (custom) Affected: 0 , ≤ LW90.TU.P215 (custom) Affected: 0 , ≤ LW90.SA.P215 (custom) Affected: 0 , ≤ LW90.MG.P215 (custom) Affected: 0 , ≤ LW90.GM7.P215 (custom) Affected: 0 , ≤ LW90.GM4.P215 (custom) Affected: 0 , ≤ LW90.VY4.P215 (custom) Affected: 0 , ≤ LW80.PRL.P257 (custom) Affected: 0 , ≤ LW80.SB2.P257 (custom) Affected: 0 , ≤ LW80.VYL.P257 (custom) Affected: 0 , ≤ LW80.VY2.P257 (custom) Affected: 0 , ≤ LW80.GM2.P257 (custom) |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-11344",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-02-13T19:16:46.776468Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-02-13T19:19:11.784Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "CX, XC, CS, MS, MX, XM, et. al.",
"vendor": "Lexmark",
"versions": [
{
"changes": [
{
"at": "CXTLS.240.077 - CXTLS.240.199",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTLS.240.076",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTLS.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTLS.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTLS.240.077 - MXTLS.240.199",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTLS.240.076",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTLS.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTLS.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTLS.240.077 - CSTLS.240.199",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTLS.240.076",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTLS.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTLS.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNSN.240.043 - MSNSN.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNSN.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNSN.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSNSN.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTSN.240.043 - MSTSN.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTSN.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTSN.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSTSN.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTSN.240.043 - MXTSN.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTSN.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTSN.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTSN.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNGV.240.043 - CSNGV.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNGV.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNGV.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSNGV.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTGV.240.043 - CSTGV.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTGV.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTGV.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTGV.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTGV.240.043 - CXTGV.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTGV.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTGV.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTGV.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPC.240.043 - CXTPC.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPC.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPC.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTPC.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPC.240.043 - CSTPC.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPC.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPC.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTPC.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTCT.240.043 - MXTCT.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTCT.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTCT.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTCT.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTPM.240.043-MXTPM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTPM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTPM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTPM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMM.240.043-CXTMM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTMM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMM.240.043 - CSTMM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTMM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTZJ.240.043 - CSTZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNZJ.240.043 - CSNZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSNZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTZJ.240.043 - CXTZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXNZJ.240.043 - CXNZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXNZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXNZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXNZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGM.240.043 - MSNGM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNGM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSNGM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGM.240.043 - MSTGM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTGM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSTGM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXNGM.240.043 - MXNGM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXNGM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXNGM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXNGM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGM.240.043 - MXTGM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTGM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTGM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGW.240.043 - MSNGW.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNGW.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGW.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSNGW.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGW.240.043 - MSTGW.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTGW.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGW.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSTGW.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGW.240.043 - MXTGW.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTGW.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGW.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTGW.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLSG.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLSG.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLSG.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLSG.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLBD.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLBD.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLBD.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLBD.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBN.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBN.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBL.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBL.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBN.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBN.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBL.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBL.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPP.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPP.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPP.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPP.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTAT.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTAT.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTAT.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTAT.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMH.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMH.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMH.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMH.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TL2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TL2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TU.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TU.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SA.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SA.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.MG.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.MG.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.VY4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.VY4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.PRL.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.PRL.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.SB2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.SB2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VYL.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VYL.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VY2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VY2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.GM2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.GM2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003eA type confusion vulnerability has been identified in the Postscript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code.\u003cbr\u003e\u003c/p\u003e"
}
],
"value": "A type confusion vulnerability has been identified in the Postscript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code."
}
],
"impacts": [
{
"capecId": "CAPEC-123",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-123 Buffer Manipulation"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-843",
"description": "CWE-843 Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-02-13T18:53:16.828Z",
"orgId": "7bc73191-a2b6-4c63-9918-753964601853",
"shortName": "Lexmark"
},
"references": [
{
"url": "https://www.lexmark.com/en_us/solutions/security/lexmark-security-advisories.html"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Type confusion vulnerability in the Postscript interpreter in various Lexmark devices",
"workarounds": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Lexmark recommends a firmware update if your device has affected firmware."
}
],
"value": "Lexmark recommends a firmware update if your device has affected firmware."
}
],
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "7bc73191-a2b6-4c63-9918-753964601853",
"assignerShortName": "Lexmark",
"cveId": "CVE-2024-11344",
"datePublished": "2025-02-13T18:51:23.777Z",
"dateReserved": "2024-11-18T16:10:34.720Z",
"dateUpdated": "2025-02-13T19:19:11.784Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-11348 (GCVE-0-2024-11348)
Vulnerability from cvelistv5 – Published: 2025-01-27 13:16 – Updated: 2025-01-27 19:36
VLAI?
EPSS
Summary
Eura7 CMSmanager in version 4.6 and below is vulnerable to Reflected XSS attacks through manipulation of return GET request parameter sent to a specific endpoint.
The vulnerability has been fixed by a patche patch 17012022 addressing all affected versions in use.
Severity ?
CWE
- CWE-79 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Eura7 | CMSmanager |
Affected:
0 , ≤ 4.6
(custom)
|
Credits
Sebastian Jeż
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-11348",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-01-27T19:36:18.497588Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-01-27T19:36:28.619Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "CMSmanager",
"vendor": "Eura7",
"versions": [
{
"changes": [
{
"at": "patch 17012022",
"status": "unaffected"
}
],
"lessThanOrEqual": "4.6",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Sebastian Je\u017c"
}
],
"datePublic": "2025-01-27T11:00:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Eura7 CMSmanager in version 4.6 and below\u0026nbsp;\u003cspan style=\"background-color: rgb(252, 252, 252);\"\u003eis vulnerable to Reflected XSS attacks through manipulation of\u0026nbsp;\u003ci\u003ereturn\u003c/i\u003e GET request parameter sent to a specific\u003ci\u003e\u0026nbsp;\u003c/i\u003eendpoint.\u003cbr\u003e\u003c/span\u003eThe vulnerability has been fixed by a patche\u0026nbsp;patch 17012022 addressing all affected versions in use.\u0026nbsp;"
}
],
"value": "Eura7 CMSmanager in version 4.6 and below\u00a0is vulnerable to Reflected XSS attacks through manipulation of\u00a0return GET request parameter sent to a specific\u00a0endpoint.\nThe vulnerability has been fixed by a patche\u00a0patch 17012022 addressing all affected versions in use."
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "LOW",
"subIntegrityImpact": "LOW",
"userInteraction": "PASSIVE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-79",
"description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or \u0027Cross-site Scripting\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-01-27T13:16:02.584Z",
"orgId": "4bb8329e-dd38-46c1-aafb-9bf32bcb93c6",
"shortName": "CERT-PL"
},
"references": [
{
"url": "https://cert.pl/en/posts/2025/01/CVE-2024-11348"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Reflected XSS in Eura7 CMSmanager",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "4bb8329e-dd38-46c1-aafb-9bf32bcb93c6",
"assignerShortName": "CERT-PL",
"cveId": "CVE-2024-11348",
"datePublished": "2025-01-27T13:16:02.584Z",
"dateReserved": "2024-11-18T16:29:41.145Z",
"dateUpdated": "2025-01-27T19:36:28.619Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-11346 (GCVE-0-2024-11346)
Vulnerability from cvelistv5 – Published: 2025-02-13 18:54 – Updated: 2025-02-13 19:17
VLAI?
EPSS
Summary
: Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Lexmark International CX, XC, CS, et. Al. (Postscript interpreter modules) allows Resource Injection.This issue affects CX, XC, CS, et. Al.: from 001.001:0 through 081.231, from *.*.P001 through *.*.P233, from *.*.P001 through *.*.P759, from *.*.P001 through *.*.P836.
Severity ?
7.3 (High)
CWE
- CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Lexmark International | CX, XC, CS, MS, MX, XM, et. al. |
Affected:
0 , ≤ CXTLS.240.076
(custom)
Affected: CXTLS.240.200 , < * (custom) Affected: 0 , ≤ MXTLS.240.076 (custom) Affected: MXTLS.240.200 , < * (custom) Affected: 0 , ≤ CSTLS.240.076 (custom) Affected: CSTLS.240.200 , < * (custom) Affected: 0 , ≤ MSNSN.240.042 (custom) Affected: MSNSN.240.200 , < * (custom) Affected: 0 , ≤ MSTSN.240.042 (custom) Affected: MSTSN.240.200 , < * (custom) Affected: 0 , ≤ MXTSN.240.042 (custom) Affected: MXTSN.240.200 , < * (custom) Affected: 0 , ≤ CSNGV.240.042 (custom) Affected: CSNGV.240.200 , < * (custom) Affected: 0 , ≤ CSTGV.240.042 (custom) Affected: CSTGV.240.200 , < * (custom) Affected: 0 , ≤ CXTGV.240.042 (custom) Affected: CXTGV.240.200 , < * (custom) Affected: 0 , ≤ CXTPC.240.042 (custom) Affected: CXTPC.240.200 , < * (custom) Affected: 0 , ≤ CSTPC.240.042 (custom) Affected: CSTPC.240.200 , < * (custom) Affected: 0 , ≤ MXTCT.240.042 (custom) Affected: MXTCT.240.200 , < * (custom) Affected: 0 , ≤ MXTPM.240.042 (custom) Affected: MXTPM.240.200 , < * (custom) Affected: 0 , ≤ CXTMM.240.042 (custom) Affected: CXTMM.240.200 , < * (custom) Affected: 0 , ≤ CSTMM.240.042 (custom) Affected: CSTMM.240.200 , < * (custom) Affected: 0 , ≤ CSTZJ.240.042 (custom) Affected: CSTZJ.240.200 , < * (custom) Affected: 0 , ≤ CSNZJ.240.042 (custom) Affected: CSNZJ.240.200 , < * (custom) Affected: 0 , ≤ CXTZJ.240.042 (custom) Affected: CXTZJ.240.200 , < * (custom) Affected: 0 , ≤ CXNZJ.240.042 (custom) Affected: CXNZJ.240.200 , < * (custom) Affected: 0 , ≤ MSNGM.240.042 (custom) Affected: MSNGM.240.200 , < * (custom) Affected: 0 , ≤ MSLSG.230.401 (custom) Affected: 0 , ≤ MXLSG.230.401 (custom) Affected: 0 , ≤ MSLBD.230.401 (custom) Affected: 0 , ≤ MXLBD.230.401 (custom) Affected: 0 , ≤ CSLBN.230.401 (custom) Affected: 0 , ≤ CSLBL.230.401 (custom) Affected: 0 , ≤ CXLBN.230.401 (custom) Affected: 0 , ≤ CXLBL.230.401 (custom) Affected: 0 , ≤ CXTPP.230.401 (custom) Affected: 0 , ≤ CSTPP.230.401 (custom) Affected: 0 , ≤ CSTAT.230.401 (custom) Affected: 0 , ≤ CXTAT.230.401 (custom) Affected: 0 , ≤ CSTMH.230.401 (custom) Affected: 0 , ≤ CXTMH.230.401 (custom) Affected: 0 , ≤ LW90.TL2.P215 (custom) Affected: 0 , ≤ LW90.PR2.P215 (custom) Affected: 0 , ≤ LW90.PR4.P215 (custom) Affected: 0 , ≤ LW90.SB4.P215 (custom) Affected: 0 , ≤ LW90.SB7.P215 (custom) Affected: 0 , ≤ LW90.DN2.P215 (custom) Affected: 0 , ≤ LW90.DN4.P215 (custom) Affected: 0 , ≤ LW90.DN7.P215 (custom) Affected: 0 , ≤ LW90.TU.P215 (custom) Affected: 0 , ≤ LW90.SA.P215 (custom) Affected: 0 , ≤ LW90.MG.P215 (custom) Affected: 0 , ≤ LW90.GM7.P215 (custom) Affected: 0 , ≤ LW90.GM4.P215 (custom) Affected: 0 , ≤ LW90.VY4.P215 (custom) Affected: 0 , ≤ LW80.PRL.P257 (custom) Affected: 0 , ≤ LW80.SB2.P257 (custom) Affected: 0 , ≤ LW80.VYL.P257 (custom) Affected: 0 , ≤ LW80.VY2.P257 (custom) Affected: 0 , ≤ LW80.GM2.P257 (custom) |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-11346",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-02-13T19:16:38.233943Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-02-13T19:17:04.920Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"modules": [
"Postscript interpreter"
],
"product": "CX, XC, CS, MS, MX, XM, et. al.",
"vendor": "Lexmark International",
"versions": [
{
"changes": [
{
"at": "CXTLS.240.077 - CXTLS.240.199",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTLS.240.076",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTLS.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTLS.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTLS.240.077 - MXTLS.240.199",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTLS.240.076",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTLS.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTLS.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTLS.240.077 - CSTLS.240.199",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTLS.240.076",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTLS.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTLS.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNSN.240.043 - MSNSN.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNSN.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNSN.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSNSN.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTSN.240.043 - MSTSN.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTSN.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTSN.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSTSN.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTSN.240.043 - MXTSN.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTSN.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTSN.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTSN.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNGV.240.043 - CSNGV.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNGV.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNGV.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSNGV.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTGV.240.043 - CSTGV.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTGV.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTGV.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTGV.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTGV.240.043 - CXTGV.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTGV.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTGV.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTGV.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPC.240.043 - CXTPC.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPC.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPC.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTPC.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPC.240.043 - CSTPC.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPC.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPC.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTPC.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTCT.240.043 - MXTCT.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTCT.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTCT.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTCT.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTPM.240.043-MXTPM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTPM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTPM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTPM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMM.240.043-CXTMM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTMM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMM.240.043 - CSTMM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTMM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTZJ.240.043 - CSTZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNZJ.240.043 - CSNZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSNZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTZJ.240.043 - CXTZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXNZJ.240.043 - CXNZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXNZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXNZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXNZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGM.240.043 - MSNGM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNGM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSNGM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLSG.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLSG.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLSG.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLSG.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLBD.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLBD.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLBD.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLBD.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBN.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBN.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBL.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBL.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBN.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBN.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBL.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBL.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPP.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPP.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPP.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPP.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTAT.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTAT.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTAT.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTAT.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMH.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMH.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMH.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMH.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TL2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TL2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TU.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TU.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SA.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SA.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.MG.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.MG.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.VY4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.VY4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.PRL.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.PRL.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.SB2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.SB2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VYL.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VYL.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VY2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VY2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.GM2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.GM2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": ": Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027) vulnerability in Lexmark International CX, XC, CS, et. Al. (Postscript interpreter modules) allows Resource Injection.\u003cp\u003eThis issue affects CX, XC, CS, et. Al.: from 001.001:0 through 081.231, from *.*.P001 through *.*.P233, from *.*.P001 through *.*.P759, from *.*.P001 through *.*.P836.\u003c/p\u003e"
}
],
"value": ": Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027) vulnerability in Lexmark International CX, XC, CS, et. Al. (Postscript interpreter modules) allows Resource Injection.This issue affects CX, XC, CS, et. Al.: from 001.001:0 through 081.231, from *.*.P001 through *.*.P233, from *.*.P001 through *.*.P759, from *.*.P001 through *.*.P836."
}
],
"impacts": [
{
"capecId": "CAPEC-240",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-240 Resource Injection"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-843",
"description": "CWE-843: Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-02-13T18:54:41.167Z",
"orgId": "7bc73191-a2b6-4c63-9918-753964601853",
"shortName": "Lexmark"
},
"references": [
{
"url": "https://www.lexmark.com/en_us/solutions/security/lexmark-security-advisories.html"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Access of Resource Using Incompatible Type in Postscript interpreter",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "7bc73191-a2b6-4c63-9918-753964601853",
"assignerShortName": "Lexmark",
"cveId": "CVE-2024-11346",
"datePublished": "2025-02-13T18:54:41.167Z",
"dateReserved": "2024-11-18T16:10:42.142Z",
"dateUpdated": "2025-02-13T19:17:04.920Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-11345 (GCVE-0-2024-11345)
Vulnerability from cvelistv5 – Published: 2025-02-13 18:46 – Updated: 2025-02-13 19:19
VLAI?
EPSS
Summary
A heap-based memory vulnerability has been identified in the Postscript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code.
Severity ?
7.3 (High)
CWE
- CWE-787 - Out-of-bounds Write
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Lexmark International | CX, XC, CS, MS, MX, XM, et. al. |
Affected:
0 , ≤ CXTLS.230.341
(custom)
Affected: 0 , ≤ CSTLS.230.341 (custom) Affected: 0 , ≤ MSNSN.230.341 (custom) Affected: 0 , ≤ MSTSN.230.341 (custom) Affected: 0 , ≤ MXTSN.230.341 (custom) Affected: 0 , ≤ CSNGV.230.341 (custom) Affected: 0 , ≤ CSTGV.230.341 (custom) Affected: 0 , ≤ CXTGV.230.341 (custom) Affected: 0 , ≤ CXTPC.230.341 (custom) Affected: 0 , ≤ CSTPC.230.341 (custom) Affected: 0 , ≤ MXTCT.230.341 (custom) Affected: 0 , ≤ MXTPM.230.341 (custom) Affected: 0 , ≤ CXTMM.230.341 (custom) Affected: 0 , ≤ CSTMM.230.341 (custom) Affected: 0 , ≤ MSLSG.230.341 (custom) Affected: 0 , ≤ MXLSG.230.341 (custom) Affected: 0 , ≤ MSLBD.230.341 (custom) Affected: 0 , ≤ MXLBD.230.341 (custom) Affected: 0 , ≤ MSNGM.230.341 (custom) Affected: 0 , ≤ MSTGM.230.341 (custom) Affected: 0 , ≤ MXNGM.230.341 (custom) Affected: 0 , ≤ MXTGM.230.341 (custom) Affected: 0 , ≤ MSNGW.230.341 (custom) Affected: 0 , ≤ MSTGW.230.341 (custom) Affected: 0 , ≤ MXTGW.230.341 (custom) Affected: 0 , ≤ CSLBN.230.341 (custom) Affected: 0 , ≤ CSLBL.230.341 (custom) Affected: 0 , ≤ CXLBN.230.341 (custom) Affected: 0 , ≤ CXLBL.230.341 (custom) Affected: 0 , ≤ CSTZJ.230.341 (custom) Affected: 0 , ≤ CSNZJ.230.341 (custom) Affected: 0 , ≤ CXTZJ.230.341 (custom) Affected: 0 , ≤ CXNZJ.230.341 (custom) Affected: 0 , ≤ CXTPP.230.341 (custom) Affected: 0 , ≤ CSTPP.230.341 (custom) Affected: 0 , ≤ CSTAT.230.341 (custom) Affected: 0 , ≤ CXTAT.230.341 (custom) Affected: 0 , ≤ CSTMH.230.341 (custom) Affected: 0 , ≤ CXTMH.230.341 (custom) Affected: 0 , ≤ LW90.TL2.P215 (custom) Affected: 0 , ≤ LW90.PR2.P215 (custom) Affected: 0 , ≤ LW90.PR4.P215 (custom) Affected: 0 , ≤ LW90.SB4.P215 (custom) Affected: 0 , ≤ LW90.SB7.P215 (custom) Affected: 0 , ≤ LW90.DN2.P215 (custom) Affected: 0 , ≤ LW90.DN4.P215 (custom) Affected: 0 , ≤ LW90.DN7.P215 (custom) Affected: 0 , ≤ LW90.TU.P215 (custom) Affected: 0 , ≤ LW90.SA.P215 (custom) Affected: 0 , ≤ LW90.MG.P215 (custom) Affected: 0 , ≤ LW90.GM7.P215 (custom) Affected: 0 , ≤ LW90.GM4.P215 (custom) Affected: 0 , ≤ LW80.PRL.P257 (custom) Affected: 0 , ≤ LW80.SB2.P257 (custom) Affected: 0 , ≤ LW80.VYL.P257 (custom) Affected: 0 , ≤ LW80.VY2.P257 (custom) Affected: 0 , ≤ LW80.GM2P257 (custom) |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-11345",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-02-13T19:16:54.572367Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-02-13T19:19:43.200Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "CX, XC, CS, MS, MX, XM, et. al.",
"vendor": "Lexmark International",
"versions": [
{
"changes": [
{
"at": "CXTLS.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTLS.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTLS.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTLS.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNSN.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNSN.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTSN.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTSN.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTSN.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTSN.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNGV.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNGV.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTGV.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTGV.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTGV.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTGV.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPC.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPC.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPC.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPC.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTCT.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTCT.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTPM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTPM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLSG.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLSG.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLSG.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLSG.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLBD.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLBD.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLBD.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLBD.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNGM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTGM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXNGM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXNGM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTGM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGW.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNGW.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGW.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTGW.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGW.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTGW.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBN.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBN.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBL.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBL.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBN.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBN.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBL.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBL.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTZJ.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTZJ.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNZJ.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNZJ.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTZJ.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTZJ.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXNZJ.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXNZJ.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPP.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPP.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPP.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPP.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTAT.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTAT.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTAT.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTAT.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMH.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMH.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMH.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMH.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TL2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TL2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TU.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TU.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SA.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SA.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.MG.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.MG.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.PRL.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.PRL.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.SB2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.SB2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VYL.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VYL.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VY2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VY2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.GM2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.GM2P257",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003eA heap-based memory vulnerability has been identified in the Postscript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code.\u003cbr\u003e\u003c/p\u003e"
}
],
"value": "A heap-based memory vulnerability has been identified in the Postscript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code."
}
],
"impacts": [
{
"capecId": "CAPEC-100",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-100 Overflow Buffers"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-787",
"description": "CWE-787 Out-of-bounds Write",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-02-13T18:46:33.859Z",
"orgId": "7bc73191-a2b6-4c63-9918-753964601853",
"shortName": "Lexmark"
},
"references": [
{
"url": "https://www.lexmark.com/en_us/solutions/security/lexmark-security-advisories.html"
}
],
"solutions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Lexmark recommends a firmware update if your device has affected firmware.\n\n\u003cbr\u003e"
}
],
"value": "Lexmark recommends a firmware update if your device has affected firmware."
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Heap-based memory vulnerability in the Postscript interpreter in various Lexmark devices",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "7bc73191-a2b6-4c63-9918-753964601853",
"assignerShortName": "Lexmark",
"cveId": "CVE-2024-11345",
"datePublished": "2025-02-13T18:46:33.859Z",
"dateReserved": "2024-11-18T16:10:40.070Z",
"dateUpdated": "2025-02-13T19:19:43.200Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2025-1126 (GCVE-0-2025-1126)
Vulnerability from cvelistv5 – Published: 2025-02-11 16:50 – Updated: 2025-02-12 20:51
VLAI?
EPSS
Summary
A Reliance on Untrusted Inputs in a Security Decision vulnerability has been identified in the Lexmark Print Management Client.
Severity ?
9.3 (Critical)
CWE
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Lexmark | Lexmark Print Management Client |
Affected:
3.0.0 , < 3.5.0
(custom)
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-1126",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-02-11T17:04:45.524278Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-02-12T20:51:45.122Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Lexmark Print Management Client",
"vendor": "Lexmark",
"versions": [
{
"lessThan": "3.5.0",
"status": "affected",
"version": "3.0.0",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "A Reliance on Untrusted Inputs in a Security Decision vulnerability has been identified in the Lexmark Print Management Client."
}
],
"value": "A Reliance on Untrusted Inputs in a Security Decision vulnerability has been identified in the Lexmark Print Management Client."
}
],
"impacts": [
{
"capecId": "CAPEC-153",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-153 Input Data Manipulation"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 9.3,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-807",
"description": "CWE-807",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-02-11T16:57:18.291Z",
"orgId": "7bc73191-a2b6-4c63-9918-753964601853",
"shortName": "Lexmark"
},
"references": [
{
"url": "https://www.lexmark.com/en_us/solutions/security/lexmark-security-advisories.html"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Lexmark has identified a vulnerability in our Lexmark Print Management Client (LPMC).",
"workarounds": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Lexmark recommends updating the LPMC version if affected.\u003cbr\u003e"
}
],
"value": "Lexmark recommends updating the LPMC version if affected."
}
],
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "7bc73191-a2b6-4c63-9918-753964601853",
"assignerShortName": "Lexmark",
"cveId": "CVE-2025-1126",
"datePublished": "2025-02-11T16:50:34.270Z",
"dateReserved": "2025-02-07T21:20:13.715Z",
"dateUpdated": "2025-02-12T20:51:45.122Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-11347 (GCVE-0-2024-11347)
Vulnerability from cvelistv5 – Published: 2025-02-13 18:55 – Updated: 2025-02-13 19:09
VLAI?
EPSS
Summary
Integer Overflow or Wraparound vulnerability in Lexmark International CX, XC, CS, et. Al. (Postscript interpreter modules) allows Forced Integer Overflow.The vulnerability can be leveraged by an attacker to execute arbitrary code as an unprivileged user.
Severity ?
7.3 (High)
CWE
- CWE-190 - Integer Overflow or Wraparound
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Lexmark International | CX, XC, CS, et. al. |
Affected:
0 , ≤ CXTLS.240.076
(custom)
Affected: CXTLS.240.200 , < * (custom) Affected: 0 , ≤ MXTLS.240.076 (custom) Affected: MXTLS.240.200 , < * (custom) Affected: 0 , ≤ CSTLS.240.076 (custom) Affected: CSTLS.240.200 , < * (custom) Affected: 0 , ≤ MSNSN.240.042 (custom) Affected: MSNSN.240.200 , < * (custom) Affected: 0 , ≤ MSTSN.240.042 (custom) Affected: MSTSN.240.200 , < * (custom) Affected: 0 , ≤ MXTSN.240.042 (custom) Affected: MXTSN.240.200 , < * (custom) Affected: 0 , ≤ CSNGV.240.042 (custom) Affected: CSNGV.240.200 , < * (custom) Affected: 0 , ≤ CSTGV.240.042 (custom) Affected: CSTGV.240.200 , < * (custom) Affected: 0 , ≤ CXTGV.240.042 (custom) Affected: CXTGV.240.200 , < * (custom) Affected: 0 , ≤ CXTPC.240.042 (custom) Affected: CXTPC.240.200 , < * (custom) Affected: 0 , ≤ CSTPC.240.042 (custom) Affected: CSTPC.240.200 , < * (custom) Affected: 0 , ≤ MXTCT.240.042 (custom) Affected: MXTCT.240.200 , < * (custom) Affected: 0 , ≤ MXTPM.240.042 (custom) Affected: MXTPM.240.200 , < * (custom) Affected: 0 , ≤ CXTMM.240.042 (custom) Affected: CXTMM.240.200 , < * (custom) Affected: 0 , ≤ CSTMM.240.042 (custom) Affected: CSTMM.240.200 , < * (custom) Affected: 0 , ≤ CSTZJ.240.042 (custom) Affected: CSTZJ.240.200 , < * (custom) Affected: 0 , ≤ CSNZJ.240.042 (custom) Affected: CSNZJ.240.200 , < * (custom) Affected: 0 , ≤ CXTZJ.240.042 (custom) Affected: CXTZJ.240.200 , < * (custom) Affected: 0 , ≤ CXNZJ.240.042 (custom) Affected: CXNZJ.240.200 , < * (custom) Affected: 0 , ≤ MSNGM.240.042 (custom) Affected: MSNGM.240.200 , < * (custom) Affected: 0 , ≤ MSTGM.240.042 (custom) Affected: MSTGM.240.200 , < * (custom) Affected: 0 , ≤ MXNGM.240.042 (custom) Affected: MXNGM.240.200 , < * (custom) Affected: 0 , ≤ MXTGM.240.042 (custom) Affected: MXTGM.240.200 , < * (custom) Affected: 0 , ≤ MSNGW.240.042 (custom) Affected: MSNGW.240.200 , < * (custom) Affected: 0 , ≤ MSTGW.240.042 (custom) Affected: MSTGW.240.200 , < * (custom) Affected: 0 , ≤ MXTGW.240.042 (custom) Affected: MXTGW.240.200 , < * (custom) Affected: 0 , ≤ MSLSG.230.401 (custom) Affected: 0 , ≤ MXLSG.230.401 (custom) Affected: 0 , ≤ MSLBD.230.401 (custom) Affected: 0 , ≤ MXLBD.230.401 (custom) Affected: 0 , ≤ CSLBN.230.401 (custom) Affected: 0 , ≤ CSLBL.230.401 (custom) Affected: 0 , ≤ CXLBN.230.401 (custom) Affected: 0 , ≤ CXLBL.230.401 (custom) Affected: 0 , ≤ CXTPP.230.401 (custom) Affected: 0 , ≤ CSTPP.230.401 (custom) Affected: 0 , ≤ CSTAT.230.401 (custom) Affected: 0 , ≤ CXTAT.230.401 (custom) Affected: 0 , ≤ CSTMH.230.401 (custom) Affected: 0 , ≤ CXTMH.230.401 (custom) Affected: 0 , ≤ LW90.TL2.P215 (custom) Affected: 0 , ≤ LW90.PR2.P215 (custom) Affected: 0 , ≤ LW90.PR4.P215 (custom) Affected: 0 , ≤ LW90.SB4.P215 (custom) Affected: 0 , ≤ LW90.SB7.P215 (custom) Affected: 0 , ≤ LW90.DN2.P215 (custom) Affected: 0 , ≤ LW90.DN4.P215 (custom) Affected: 0 , ≤ LW90.DN7.P215 (custom) Affected: 0 , ≤ LW90.TU.P215 (custom) Affected: 0 , ≤ LW90.SA.P215 (custom) Affected: 0 , ≤ LW90.MG.P215 (custom) Affected: 0 , ≤ LW90.GM7.P215 (custom) Affected: 0 , ≤ LW90.GM4.P215 (custom) Affected: 0 , ≤ LW90.VY4.P215 (custom) Affected: 0 , ≤ LW80.PRL.P257 (custom) Affected: 0 , ≤ LW80.SB2.P257 (custom) Affected: 0 , ≤ LW80.VYL.P257 (custom) Affected: 0 , ≤ LW80.VY2.P257 (custom) Affected: 0 , ≤ LW80.GM2.P257 (custom) |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-11347",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-02-13T19:08:51.804229Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-02-13T19:09:37.473Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"modules": [
"Postscript interpreter"
],
"product": "CX, XC, CS, et. al.",
"vendor": "Lexmark International",
"versions": [
{
"changes": [
{
"at": "CXTLS.240.077 - CXTLS.240.199",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTLS.240.076",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTLS.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTLS.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTLS.240.077 - MXTLS.240.199",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTLS.240.076",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTLS.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTLS.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTLS.240.077 - CSTLS.240.199",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTLS.240.076",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTLS.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTLS.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNSN.240.043 - MSNSN.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNSN.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNSN.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSNSN.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTSN.240.043 - MSTSN.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTSN.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTSN.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSTSN.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTSN.240.043 - MXTSN.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTSN.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTSN.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTSN.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNGV.240.043 - CSNGV.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNGV.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNGV.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSNGV.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTGV.240.043 - CSTGV.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTGV.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTGV.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTGV.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTGV.240.043 - CXTGV.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTGV.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTGV.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTGV.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPC.240.043 - CXTPC.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPC.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPC.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTPC.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPC.240.043 - CSTPC.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPC.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPC.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTPC.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTCT.240.043 - MXTCT.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTCT.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTCT.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTCT.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTPM.240.043-MXTPM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTPM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTPM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTPM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMM.240.043-CXTMM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTMM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMM.240.043 - CSTMM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTMM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTZJ.240.043 - CSTZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNZJ.240.043 - CSNZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSNZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTZJ.240.043 - CXTZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXNZJ.240.043 - CXNZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXNZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXNZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXNZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGM.240.043 - MSNGM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNGM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSNGM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGM.240.043 - MSTGM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTGM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSTGM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXNGM.240.043 - MXNGM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXNGM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXNGM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXNGM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGM.240.043 - MXTGM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTGM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTGM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGW.240.043 - MSNGW.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNGW.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGW.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSNGW.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGW.240.043 - MSTGW.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTGW.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGW.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSTGW.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGW.240.043 - MXTGW.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTGW.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGW.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTGW.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLSG.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLSG.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLSG.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLSG.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLBD.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLBD.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLBD.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLBD.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBN.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBN.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBL.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBL.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBN.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBN.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBL.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBL.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPP.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPP.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPP.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPP.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTAT.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTAT.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTAT.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTAT.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMH.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMH.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMH.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMH.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TL2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TL2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TU.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TU.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SA.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SA.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.MG.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.MG.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.VY4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.VY4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.PRL.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.PRL.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.SB2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.SB2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VYL.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VYL.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VY2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VY2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.GM2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.GM2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Integer Overflow or Wraparound vulnerability in Lexmark International CX, XC, CS, et. Al. (Postscript interpreter modules) allows Forced Integer Overflow.\u003cp\u003eThe vulnerability can be leveraged by an attacker to execute arbitrary code as an unprivileged user.\u003c/p\u003e"
}
],
"value": "Integer Overflow or Wraparound vulnerability in Lexmark International CX, XC, CS, et. Al. (Postscript interpreter modules) allows Forced Integer Overflow.The vulnerability can be leveraged by an attacker to execute arbitrary code as an unprivileged user."
}
],
"impacts": [
{
"capecId": "CAPEC-92",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-92 Forced Integer Overflow"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-190",
"description": "CWE-190 Integer Overflow or Wraparound",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-02-13T18:55:22.943Z",
"orgId": "7bc73191-a2b6-4c63-9918-753964601853",
"shortName": "Lexmark"
},
"references": [
{
"url": "https://www.lexmark.com/en_us/solutions/security/lexmark-security-advisories.html"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Access of Resource Using Incompatible Type in Postscript interpreter",
"workarounds": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Lexmark recommends a firmware update if your device has affected firmware."
}
],
"value": "Lexmark recommends a firmware update if your device has affected firmware."
}
],
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "7bc73191-a2b6-4c63-9918-753964601853",
"assignerShortName": "Lexmark",
"cveId": "CVE-2024-11347",
"datePublished": "2025-02-13T18:55:22.943Z",
"dateReserved": "2024-11-18T16:10:43.479Z",
"dateUpdated": "2025-02-13T19:09:37.473Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…