Skip to main content

Tagged With "RCE"

Topic

Lexmark warns of RCE bug affecting 100 printer models, PoC released

Art Post ·
Lexmark has released a security firmware update to fix a severe vulnerability that could enable remote code execution (RCE) on more than 100 printer models. The security issue is tracked as CVE-2023-23560 and, according to the company, it has a severity rating of 9.0. It is a server-side request forgery (SSRF) in the Web Services feature of Lexmark devices. No evidence of exploitation The vendor’s advisory says that the bug could be leveraged to gain arbitrary code execution on the device,...
Topic

Lexmark has another security issue

Art Post ·
Lexmark has another security issue Dark Reading magazine, and many other IT publications reported on a new security vulnerability in Lexmark printers and MFPs Lexmark is a division of Ninestar of China “A nasty SSRF bug in Web Services plagues a laundry list of enterprise printers” Allows hackers to implement a remote code execution (RCE) apparently affects more than 120 different Lexmark printers and MFPs carries a score of 9 out of 10 on the CVSS vulnerability-severity scale a server-side...
×
×
×
×
×