This page lists publicly disclosed CVE vulnerabilities affecting lexmark ms817_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-40239 | Certain Lexmark devices (such as CS310) before 2023-08-25 allow XXE attacks, leading to information disclosure. The fixed firmware version is LW80.*.P246, i.e., '*' indicates that the full version specification varies across product model family, but firmware level P246 (or higher) is required to remediate the vulnerability. | [email protected] | 7.5 | 0.27% | 2023-09-01 | 2024-11-21 |
| CVE-2021-44737 | PJL directory traversal vulnerability in Lexmark devices through 2021-12-07 that can be leveraged to overwrite internal configuration files. | [email protected] | 8.8 | 0.85% | 2022-01-20 | 2024-11-21 |
| CVE-2021-44734 | Embedded web server input sanitization vulnerability in Lexmark devices through 2021-12-07, which can which can lead to remote code execution on the device. | [email protected] | 9.8 | 12.84% | 2022-01-20 | 2024-11-21 |
| CVE-2021-44738 | Buffer overflow vulnerability has been identified in Lexmark devices through 2021-12-07 in postscript interpreter. | [email protected] | 9.8 | 9.65% | 2022-01-20 | 2024-11-21 |
| CVE-2020-10094 | A cross-site scripting (XSS) vulnerability in Lexmark CS31x before LW74.VYL.P273; CS41x before LW74.VY2.P273; CS51x before LW74.VY4.P273; CX310 before LW74.GM2.P273; CX410 & XC2130 before LW74.GM4.P273; CX510 & XC2132 before LW74.GM7.P273; MS310, MS312, MS317 before LW74.PRL.P273; MS410, M1140 before LW74.PRL.P273; MS315, MS415, MS417 before LW74.TL2.P273; MS51x, MS610dn, MS617 before LW74.PR2.P273; M1145, M3150dn before LW74.PR2.P273; MS610de, M3150 before LW74.PR4.P273; MS71x,M5163dn before LW | [email protected] | 5.4 | 0.35% | 2020-04-28 | 2024-11-21 |
| CVE-2020-10093 | A cross-site scripting (XSS) vulnerability in Lexmark Pro910 series inkjet and other discontinued products. | [email protected] | 5.4 | 0.35% | 2020-04-28 | 2024-11-21 |
| CVE-2019-19773 | Various Lexmark products have stored XSS in the embedded web server used in older generation Lexmark devices. Affected products are available in http://support.lexmark.com/index?page=content&id=TE935&locale=en&userlocale=EN_US. | [email protected] | 5.4 | 0.35% | 2020-03-06 | 2024-11-21 |
| CVE-2019-19772 | Various Lexmark products have reflected XSS in the embedded web server used in older generation Lexmark devices. Affected products are available in http://support.lexmark.com/index?page=content&id=TE935&locale=en&userlocale=EN_US. | [email protected] | 5.4 | 0.35% | 2020-03-06 | 2024-11-21 |
| CVE-2019-18791 | Lexmark printer MS812 and multiple older generation Lexmark devices have a stored XSS vulnerability in the embedded web server. The vulnerability can be exploited to expose session credentials and other information via the users web browser. | [email protected] | 5.4 | 0.30% | 2020-02-13 | 2024-11-21 |
| CVE-2019-9933 | Various Lexmark products have a Buffer Overflow (issue 3 of 3). | [email protected] | 9.8 | 0.48% | 2019-08-28 | 2024-11-21 |
| CVE-2019-9932 | Various Lexmark products have a Buffer Overflow (issue 2 of 3). | [email protected] | 9.8 | 0.48% | 2019-08-28 | 2024-11-21 |
| CVE-2019-9931 | Various Lexmark printers contain a denial of service vulnerability in the SNMP service that can be exploited to crash the device. | [email protected] | 7.5 | 0.55% | 2019-08-28 | 2024-11-21 |
| CVE-2019-9930 | Various Lexmark products have an Integer Overflow. | [email protected] | 9.8 | 0.44% | 2019-08-28 | 2024-11-21 |
| CVE-2019-10059 | The legacy finger service (TCP port 79) is enabled by default on various older Lexmark devices. | [email protected] | 5.3 | 0.24% | 2019-08-28 | 2024-11-21 |
| CVE-2019-10057 | Various Lexmark products have CSRF. | [email protected] | 6.5 | 0.05% | 2019-08-28 | 2024-11-21 |
| CVE-2019-9935 | Various Lexmark products have Incorrect Access Control (issue 2 of 2). | [email protected] | 5.3 | 0.20% | 2019-08-28 | 2024-11-21 |
| CVE-2019-9934 | Various Lexmark products have Incorrect Access Control (issue 1 of 2). | [email protected] | 5.3 | 0.20% | 2019-08-28 | 2024-11-21 |
| CVE-2019-10058 | Various Lexmark products have Incorrect Access Control. | [email protected] | 9.1 | 0.31% | 2019-08-28 | 2024-11-21 |