Published: 23/01/2023 Updated: 06/02/2023

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

Lexmark products through 2023-01-10 have Improper Control of Interaction Frequency.

Vulnerable Product	Search on Vulmon	Subscribe to Product
lexmark b2236_firmware
lexmark b2338_firmware
lexmark b2442_firmware
lexmark b2546_firmware
lexmark b2650_firmware
lexmark b2865_firmware
lexmark b3340_firmware
lexmark b3442_firmware
lexmark c2240_firmware
lexmark c2325_firmware
lexmark c2326_firmware
lexmark c2425_firmware
lexmark c2535_firmware
lexmark c3224_firmware
lexmark c3326_firmware
lexmark c3426_firmware
lexmark c4150_firmware
lexmark c6160_firmware
lexmark c9235_firmware
lexmark cs331_firmware
lexmark cs421_firmware
lexmark cs431_firmware
lexmark cs439_firmware
lexmark cs521_firmware
lexmark cs622_firmware
lexmark cs720_firmware
lexmark cs725_firmware
lexmark cs727_firmware
lexmark cs728_firmware
lexmark cs820_firmware
lexmark cs827_firmware
lexmark cs921_firmware
lexmark cs923_firmware
lexmark cs927_firmware
lexmark cx331_firmware
lexmark cx421_firmware
lexmark cx431_firmware
lexmark cx522_firmware
lexmark cx622_firmware
lexmark cx625_firmware
lexmark cx725_firmware
lexmark cx727_firmware
lexmark cx820_firmware
lexmark cx825_firmware
lexmark cx860_firmware
lexmark cx920_firmware
lexmark cx921_firmware
lexmark cx922_firmware
lexmark cx923_firmware
lexmark cx924_firmware
lexmark cx944_firmware
lexmark m1242_firmware
lexmark m1246_firmware
lexmark m1342_firmware
lexmark m3250_firmware
lexmark m5255_firmware
lexmark m5270_firmware
lexmark mb2236_firmware
lexmark mb2338_firmware
lexmark mb2442_firmware
lexmark mb2546_firmware
lexmark mb2650_firmware
lexmark mb2770_firmware
lexmark mb3442_firmware
lexmark mc2325_firmware
lexmark mc2425_firmware
lexmark mc2535_firmware
lexmark mc2640_firmware
lexmark mc3224_firmware
lexmark mc3326_firmware
lexmark mc3426_firmware
lexmark ms321_firmware
lexmark ms331_firmware
lexmark ms421_firmware
lexmark ms431_firmware
lexmark ms521_firmware
lexmark ms621_firmware
lexmark ms622_firmware
lexmark ms725_firmware
lexmark ms821_firmware
lexmark ms822_firmware
lexmark ms823_firmware
lexmark ms825_firmware
lexmark ms826_firmware
lexmark mx321_firmware
lexmark mx331_firmware
lexmark mx421_firmware
lexmark mx431_firmware
lexmark mx432_firmware
lexmark mx521_firmware
lexmark mx522_firmware
lexmark mx622_firmware
lexmark mx721_firmware
lexmark mx722_firmware
lexmark mx822_firmware
lexmark mx826_firmware
lexmark mx931_firmware
lexmark xc2235_firmware
lexmark xc2326_firmware
lexmark xc4140_firmware
lexmark xc4143_firmware
lexmark xc4150_firmware
lexmark xc4153_firmware
lexmark xc4240_firmware
lexmark xc4342_firmware
lexmark xc4352_firmware
lexmark xc6152_firmware
lexmark xc6153_firmware
lexmark xc8155_firmware
lexmark xc8160_firmware
lexmark xc8163_firmware
lexmark xc9225_firmware
lexmark xc9235_firmware
lexmark xc9245_firmware
lexmark xc9255_firmware
lexmark xc9265_firmware
lexmark xc9335_firmware
lexmark xc9445_firmware
lexmark xc9455_firmware
lexmark xc9465_firmware
lexmark xm1242_firmware
lexmark xm1246_firmware
lexmark xm1342_firmware
lexmark xm3142_firmware
lexmark xm3250_firmware
lexmark xm5365_firmware
lexmark xm7355_firmware
lexmark xm7370_firmware

Connect with me / Support: Hi, I'm t3l3machus, Penetration Tester & Cybersec Researcher from Athens, Greece , currently living in Poland If you like the tools I make please show some love by following me, subscribing on YT, throwing a star here and there or just give respect on HackTheBox Projects: Offensive Sec

PoC for CVE-2023-22960 Details This vulnerability allows an attacker to bypass the credentials brute-force prevention mechanism of the Embedded Web Server (interface) of more than 60 Lexmark printer models This issue affects both username-password and PIN authentication Official security advisory -> publicationslexmarkcom/publications/security-alerts/CVE-2

CVE-2023-22960 Lexmark products through 2023-01-10 have Improper Control of Interaction Frequency authentication complexity vector not available not available not available confidentiality integrity availability not available not available not available CVSS Score: not available References publicationslexmarkcom/publications/security-alerts/CVE-2

Table of Contents 2023 year top total 30 2022 year top total 30 2021 year top total 30 2020 year top total 30 2019 year top total 30 2018 year top total 30 2017 year top total 30 2016 year top total 30 2015 year top total 30 2014 year top total 30 2023 star updated_at name url des 304 2023-03-18T21:10:14Z Windows_LPE_AFD_CVE-2023-21768 githubcom/chompie1337/Wi

Table of Contents 2023 year top total 30 2022 year top total 30 2021 year top total 30 2020 year top total 30 2019 year top total 30 2018 year top total 30 2017 year top total 30 2016 year top total 30 2015 year top total 30 2014 year top total 30 2023 star updated_at name url des 323 2023-03-23T01:27:35Z Windows_LPE_AFD_CVE-2023-21768 githubcom/chompie1337/Wi

Table of Contents 2023 year top total 30 2022 year top total 30 2021 year top total 30 2020 year top total 30 2019 year top total 30 2018 year top total 30 2017 year top total 30 2016 year top total 30 2015 year top total 30 2014 year top total 30 2013 year top total 30 2012 year top total 30 2011 year top total 30 2010 year top total 30 2009 year top total 30 2008 year top to

CWE-307 https://publications.lexmark.com/publications/security-alerts/CVE-2023-22960.pdf https://github.com/t3l3machus/t3l3machus https://nvd.nist.gov

Get Started

CVE-2023-22960

Vulnerability Summary

Most Upvoted Vulmon Research Post

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect