Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 04/02/2014 Updated: 04/02/2014

CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8

VMScore: 312

Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities on Lexmark W840 through LS.HA.P252, T64x before LS.ST.P344, C935dn through LC.JO.P091, C920 through LS.TA.P152, C53x through LS.SW.P069, C52x through LS.FA.P150, E450 through LM.SZ.P124, E350 through LE.PH.P129, and E250 through LE.PM.P126 printers allow remote authenticated users to inject arbitrary web script or HTML by using (1) SNMP or (2) the Embedded Web Server (EWS) to set the (a) Contact or (b) Location field.

Vulnerable Product	Search on Vulmon	Subscribe to Product
lexmark e450
lexmark c52x
lexmark c53x
lexmark c920
lexmark c935dn
lexmark e350
lexmark w840
lexmark e250
lexmark t64x

CWE-79 http://www.kb.cert.org/vuls/id/108062 http://www.securityfocus.com/bid/65277 http://www.osvdb.org/102752 http://support.lexmark.com/index?page=content&id=TE585 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-6033

Vulnerability Summary

References

Vulmon Search

About

Products

Connect