← back
CVE-2023-26067

CVE-2023-26067

CVSS 8.1 HIGHEPSS 37.8%CWE-20
Vexday Risk Score
48Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS 8.1EPSS 37.8%KEV nãoPoC Nuclei simMetasploit Patch
Lifecycle
10 Apr 2023Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 1 of 4).
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/174763/Lexmark-Device-Embedded-Web-Server-Remote-Code-Execution.htmlhttps://publications.lexmark.com/publications/security-alerts/CVE-2023-26067.pdfhttps://support.lexmark.com/alerts/