5.3

CVE-2019-9934

Various Lexmark products have Incorrect Access Control (issue 1 of 2).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LexmarkCs31x Firmware Version <= lw71.vyl.p229
   LexmarkCs31x Version-
LexmarkCs41x Firmware Version <= lw71.vy2.p229
   LexmarkCs41x Version-
LexmarkCx310 Firmware Version <= lw71.gm2.p229
   LexmarkCx310 Version-
LexmarkMs310 Firmware Version <= lw71.prl.p229
   LexmarkMs310 Version-
LexmarkMs312 Firmware Version <= lw71.prl.p229
   LexmarkMs312 Version-
LexmarkMs317 Firmware Version <= lw71.prl.p229
   LexmarkMs317 Version-
LexmarkMs410 Firmware Version <= lw71.prl.p229
   LexmarkMs410 Version-
LexmarkM1140 Firmware Version <= lw71.prl.p229
   LexmarkM1140 Version-
LexmarkMs315 Firmware Version <= lw71.tl2.p229
   LexmarkMs315 Version-
LexmarkMs415 Firmware Version <= lw71.tl2.p229
   LexmarkMs415 Version-
LexmarkMs417 Firmware Version <= lw71.tl2.p229
   LexmarkMs417 Version-
LexmarkMx31x Firmware Version <= lw71.sb2.p229
   LexmarkMx31x Version-
LexmarkXm1135 Firmware Version <= lw71.sb2.p229
   LexmarkXm1135 Version-
LexmarkMs51x Firmware Version <= lw71.pr2.p229
   LexmarkMs51x Version-
LexmarkMs610dn Firmware Version <= lw71.pr2.p229
   LexmarkMs610dn Version-
LexmarkMs617 Firmware Version <= lw71.pr2.p229
   LexmarkMs617 Version-
LexmarkM1145 Firmware Version <= lw71.pr2.p229
   LexmarkM1145 Version-
LexmarkM3150dn Firmware Version <= lw71.pr2.p229
   LexmarkM3150dn Version-
LexmarkMs71x Firmware Version <= lw71.dn2.p229
   LexmarkMs71x Version-
LexmarkM5163dn Firmware Version <= lw71.dn2.p229
   LexmarkM5163dn Version-
LexmarkMs810 Firmware Version <= lw71.dn2.p229
   LexmarkMs810 Version-
LexmarkMs811 Firmware Version <= lw71.dn2.p229
   LexmarkMs811 Version-
LexmarkMs812 Firmware Version <= lw71.dn2.p229
   LexmarkMs812 Version-
LexmarkMs817 Firmware Version <= lw71.dn2.p229
   LexmarkMs817 Version-
LexmarkMs818 Firmware Version <= lw71.dn2.p229
   LexmarkMs818 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.2% 0.394
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.3 3.9 1.4
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
CWE-306 Missing Authentication for Critical Function

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.