9.8

CVE-2018-15519

Various Lexmark devices have a Buffer Overflow (issue 1 of 2).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LexmarkCx310 Firmware Version <= lw70.gm2.p204
   LexmarkCx310 Version-
LexmarkCx410 Firmware Version <= lw70.gm4.p204
   LexmarkCx410 Version-
LexmarkCx510 Firmware Version <= lw70.gm7.p204
   LexmarkCx510 Version-
LexmarkXc2132 Firmware Version <= lw70.gm7.p204
   LexmarkXc2132 Version-
LexmarkMx31x Firmware Version <= lw70.sb2.p204
   LexmarkMx31x Version-
LexmarkMx41x Firmware Version <= lw70.sb4.p204
   LexmarkMx41x Version-
LexmarkMx51x Firmware Version <= lw70.sb4.p204
   LexmarkMx51x Version-
LexmarkXm1145 Firmware Version <= lw70.sb4.p204
   LexmarkXm1145 Version-
LexmarkMx61x Firmware Version <= lw70.sb7.p204
   LexmarkMx61x Version-
LexmarkXm3150 Firmware Version <= lw70.sb7.p204
   LexmarkXm3150 Version-
LexmarkMx71x Firmware Version <= lw70.tu.p204
   LexmarkMx71x Version-
LexmarkMx81x Firmware Version <= lw70.tu.p204
   LexmarkMx81x Version-
LexmarkXm51xx Firmware Version <= lw70.tu.p204
   LexmarkXm51xx Version-
LexmarkXm71xx Firmware Version <= lw70.tu.p204
   LexmarkXm71xx Version-
LexmarkMx91x Firmware Version <= lw70.mg.p204
   LexmarkMx91x Version-
LexmarkXm91x Firmware Version <= lw70.mg.p204
   LexmarkXm91x Version-
LexmarkMx6500 Firmware Version <= lw70.jd.p204
   LexmarkMx6500 Version-
LexmarkX54x Firmware Version <= lhs60.vk.p671
   LexmarkX54x Version-
LexmarkXs54x Firmware Version <= lhs60.vk.p671
   LexmarkXs54x Version-
LexmarkX74x Firmware Version <= lhs60.ny.p671
   LexmarkX74x Version-
LexmarkXs74x Firmware Version <= lhs60.ny.p671
   LexmarkXs74x Version-
LexmarkX79x Firmware Version <= lhs60.mr.p671
   LexmarkX79x Version-
LexmarkXs79x Firmware Version <= lhs60.mr.p671
   LexmarkXs79x Version-
LexmarkX92x Firmware Version <= lhs60.hk.p671
   LexmarkX92x Version-
LexmarkXs92x Firmware Version <= lhs60.hk.p671
   LexmarkXs92x Version-
LexmarkX95x Firmware Version <= lhs60.tq.p671
   LexmarkX95x Version-
LexmarkXs95x Firmware Version <= lhs60.tq.p671
   LexmarkXs95x Version-
Lexmark6500 Firmware Version <= lhs60.jr.p671
   Lexmark6500 Version-
LexmarkX46x Firmware Version <= lr.bs.p803
   LexmarkX46x Version-
LexmarkX65x Firmware Version <= lr.mn.p803
   LexmarkX65x Version-
LexmarkX73x Firmware Version <= lr.fl.p803
   LexmarkX73x Version-
LexmarkX86x Firmware Version <= lr.sp.p803
   LexmarkX86x Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.54% 0.65
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.8 3.9 5.9
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.