Skip to main content

0 replies

Lexmark Printers at Risk: New Vulnerability! Multiple vulnerabilities reported

Art PostArt PostAdmin VIP

reported on https://www.breakinglatest.new...rabilities-reported/

There is a current IT security warning for Lexmark printers. Here you can find out which vulnerabilities are involved, which products are affected and what you can do.

The latest manufacturer recommendations regarding updates, workarounds and security patches for this vulnerability can be found here: Lexmark Security Advisories (Status: 03/12/2023). Other useful sources are listed later in this article.

Several vulnerabilities for Lexmark printers reported – risk: high

Risk level: 5 (high)
CVSS Base Score: 9,0
CVSS Temporal Score: 7,8
Remoteangriff: Ja

The Common Vulnerability Scoring System (CVSS) is used to assess the severity of vulnerabilities in computer systems. The CVSS standard makes it possible to compare potential or actual security gaps based on various metrics in order to create a priority list based on this for initiating countermeasures. The attributes “none”, “low”, “medium”, “high” and “critical” are used for the severity of a vulnerability. The base score assesses the prerequisites for an attack (including authentication, complexity, privileges, user interaction) and its consequences. With the temporal score, framework conditions that change over time are included in the evaluation. The severity of the vulnerability discussed here is rated as “high” according to the CVSS with a base score of 9.0.

Lexmark printer bug: Effects of an IT attack

Lexmark is a manufacturer of printers and printer supplies.

A remote, anonymous, or authenticated attacker could exploit multiple vulnerabilities in Lexmark printers to execute arbitrary code or escalate privileges

The vulnerabilities were classified using the CVE reference system (Common Vulnerabilities and Exposures) based on the individual serial numbers CVE-2023-26067, CVE-2023-26068, CVE-2023-26070, CVE-2023-26069, CVE-2023-26066, CVE-2023-26065, CVE-2023-26064 und CVE-2023-26063.

Systems affected by the vulnerability at a glance

operating system

See also  Mirror Shuangcheng's original novel Somo is dead? Does Zhen Lan like Bai Ying? Why was she divided up?

Products
Lexmark Laser Printers (cpe:/h:lexmark:laser_printer)
Lexmark Multifunction Printer (cpe:/h:lexmark:multifunction_printer)

General measures for dealing with IT security gaps

  1. Users of the affected systems should keep them up to date. When security gaps become known, manufacturers are required to remedy them as quickly as possible by developing a patch or a workaround. If new security updates are available, install them promptly.

  2. For information, consult the sources listed in the next section. These often contain further information on the latest version of the software in question and the availability of security patches or tips on workarounds.

  3. If you have any further questions or are uncertain, please contact your responsible administrator. IT security officers should regularly check when the IT security warning affected manufacturers makes a new security update available.

Manufacturer information on updates, patches and workarounds

At this point there are further links with information about bug reports, security fixes and workarounds.

Lexmark Security Advisories vom 2023-03-12 (13.03.2023)
For more information, see: https://publications.lexmark.c...s/CVE-2023-26063.pdf

Lexmark Security Advisories vom 2023-03-12 (13.03.2023)
For more information, see: https://publications.lexmark.c...s/CVE-2023-26064.pdf

Lexmark Security Advisories vom 2023-03-12 (13.03.2023)
For more information, see: https://publications.lexmark.c...s/CVE-2023-26065.pdf

Lexmark Security Advisories vom 2023-03-12 (13.03.2023)
For more information, see: https://publications.lexmark.c...s/CVE-2023-26066.pdf

Lexmark Security Advisories vom 2023-03-12 (13.03.2023)
For more information, see: https://publications.lexmark.c...s/CVE-2023-26067.pdf

Lexmark Security Advisories vom 2023-03-12 (13.03.2023)
For more information, see: https://publications.lexmark.c...s/CVE-2023-26068.pdf

Lexmark Security Advisories vom 2023-03-12 (13.03.2023)
For more information, see: https://publications.lexmark.c...s/CVE-2023-26069.pdf

Lexmark Security Advisories vom 2023-03-12 (13.03.2023)
For more information, see: https://publications.lexmark.c...s/CVE-2023-26070.pdf

Version history of this security alert

This is the initial version of this IT security notice for Lexmark printers. As updates are announced, this text will be updated. You can understand the changes made using the following version history.

If you like something I've posted please feel free to click the "like" button!

Original Post

Add Reply

Post

Membership Required

We're sorry. You must be signed in to continue. Sign In or Register
×
Are you sure you want to remove from your Block List?
×
Loading...
×
When you block a person, they can no longer invite you to a private message or post to your profile wall. Replies and comments they make will be collapsed/hidden by default. Finally, you'll never receive email notifications about content they create or likes they designate for your content.
Note: if you proceed, you will no longer be following .
×
Advanced Search
Advanced Search
Link copied to your clipboard.
×

Access to this requires a premium membership.

VIP/Premium Membership

A Premium Membership can carry you to the top of the sales ladder!

Premium Membership Includes:

  • Access to the Premium forums (I'm not going to post all of my secrets in the general forums, but I will post them in the Premium forums).
  • Unlimited downloads of all documents which include competitive proposals, Print4Pay Hotels "Pricing on the Street", competitive quotes, competitive sales orders, RFP's/RFQ's and word/xcel documents that I've created that will help you track your sales, self help sales documents, and much more!
  • As long as you're a Premium Member, you can lean on me for additional help with creative ideas of how to close the deal, add additional value with a third party solution, whatever you need in order to help WIN the deal!
  • Leads, every now and then I'll get a few leads from across the country, this is due the lead generation site I created and all the blogs I've written. A Premium Membership will enable you to receive these leads.

Follow the link on the forums to get your Premium Membership. If you're interested in a lifetime membership please send me an email arthurkpost@gmail.com and we'll send you a pay pal invoice of $399 of a LIFETIME Print4Pay Hotel membership.

$115.00 per 12 Months (plus tax if applicable)
×