The Recycler
  • Katun Masthead Nov 2024
  • G&G Web Ad Dec 2024
  • Biuromax Masthead web banner March 2024
  • https://keypointintelligence.com/communicationsupplies

Lexmark recommends firmware update to fix vulnerabilities

March 14, 2023

The company has released several new Security Advisory notices, warning of vulnerabilities identified in various Lexmark devices.

One of the latest Security Advisory notices is warning of an input validation vulnerability has been identified in the web API of newer Lexmark devices.

Lexmark explains that an input validation vulnerability has been identified in the SNMP feature in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code. Affected devices are found here.

Also found was that the embedded web server in newer Lexmark devices fails to properly sanitise input data which can lead to remote code execution on the device.

Lexmark advised that a vulnerability has been identified in the embedded web server used in Lexmark devices. The vulnerability allows the attacker to execute arbitrary code on a device with the permissions of the embedded webserver. Affected devices can be seen here.

Another Security Advisory notice reports of a trusted internal component of Lexmark devices that has an input validation vulnerability. This vulnerability can be leveraged by an attacker who has already compromised the device to escalate privileges. This input validation vulnerability allows an attacker who has already compromised an affected Lexmark device to escalate privileges. Affected devices can be found here.

And finally, a vulnerability has been identified in the Postscript interpreter in various Lexmark devices. The company explained that a type confusion vulnerability has been identified in Postscript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code. See affected devices here.

In all cases, Lexmark recommends a firmware update if your device has affected firmware.

Lexmark added that it is not aware of any malicious use against Lexmark products of the vulnerability described in any of the advisories.

 

Categories : Around the Industry

Tags : Devices Firmware Updates Lexmark Printers Security Advisory Notices Vulnerabilities

  • INk TANK Dec 24 Web Ad
  • TN Core Dec 2024 Web Ad
  • Biuromax Nov 2024 Web Ad
  • IR Italiana Web ad January 2021
  • Cartridge Web Web Ad Dec 24
  • G&G web advert October 2024
  • Apex Web ad Nov 2024
  • Static Control June 2022 Big & Bold Ad
  • GM Technology Dec 24 Web Ad
  • Zhono Web ad March 2024
  • Mito Web banner June 2024
  • HYB Web banner Jan 2024
  • PCL Nov Web advert
  • Denner Feb 2024 Web Ad
  • CET Web ad December 2023
  • denner UK Web Banner Jul 2024
  • HYB Web banner Jan 2024
  • Zhono Web ad March 2024
  • Denner Feb 2024 Web Ad
  • PCL Nov Web advert
  • CET Web ad December 2023
  • denner UK Web Banner Jul 2024
  • GM Technology Dec 24 Web Ad
  • Mito Web banner June 2024
  • PCL Nov Web advert
  • CET Web ad December 2023
  • Zhono Web ad March 2024
  • denner UK Web Banner Jul 2024
  • Mito Web banner June 2024
  • Denner Feb 2024 Web Ad
  • GM Technology Dec 24 Web Ad
  • HYB Web banner Jan 2024

The Recycler, Wittas House, Two Rivers, Station Lane, Witney, OX28 4BH, United Kingdom | Tel: +44 (0) 1993 899800 | Fax : +44 (0) 1993 226899
©2006-2023 The Recycler - Terms & Conditions - Privacy Policy including cookie use

Web design Dorset | Websites by Mark