5.4

CVE-2020-10094

A cross-site scripting (XSS) vulnerability in Lexmark CS31x before LW74.VYL.P273; CS41x before LW74.VY2.P273; CS51x before LW74.VY4.P273; CX310 before LW74.GM2.P273; CX410 & XC2130 before LW74.GM4.P273; CX510 & XC2132 before LW74.GM7.P273; MS310, MS312, MS317 before LW74.PRL.P273; MS410, M1140 before LW74.PRL.P273; MS315, MS415, MS417 before LW74.TL2.P273; MS51x, MS610dn, MS617 before LW74.PR2.P273; M1145, M3150dn before LW74.PR2.P273; MS610de, M3150 before LW74.PR4.P273; MS71x,M5163dn before LW74.DN2.P273; MS810, MS811, MS812, MS817, MS818 before LW74.DN2.P273; MS810de, M5155, M5163 before LW74.DN4.P273; MS812de, M5170 before LW74.DN7.P273; MS91x before LW74.SA.P273; MX31x, XM1135 before LW74.SB2.P273; MX410, MX510 & MX511 before LW74.SB4.P273; XM1140, XM1145 before LW74.SB4.P273; MX610 & MX611 before LW74.SB7.P273; XM3150 before LW74.SB7.P273; MX71x, MX81x before LW74.TU.P273; XM51xx & XM71xx before LW74.TU.P273; MX91x & XM91x before LW74.MG.P273; MX6500e before LW74.JD.P273; C746 before LHS60.CM2.P738; C748, CS748 before LHS60.CM4.P738; C792, CS796 before LHS60.HC.P738; C925 before LHS60.HV.P738; C950 before LHS60.TP.P738; X548 & XS548 before LHS60.VK.P738; X74x & XS748 before LHS60.NY.P738; X792 & XS79x before LHS60.MR.P738; X925 & XS925 before LHS60.HK.P738; X95x & XS95x before LHS60.TQ.P738; 6500e before LHS60.JR.P738;C734 LR.SK.P824 and earlier; C736 LR.SKE.P824 and earlier; E46x LR.LBH.P824 and earlier; T65x LR.JP.P824 and earlier; X46x LR.BS.P824 and earlier; X65x LR.MN.P824 and earlier; X73x LR.FL.P824 and earlier; W850 LP.JB.P823 and earlier; and X86x LP.SP.P823 and earlier.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LexmarkCs31x Firmware Version <= lw74.vyl.p272
   LexmarkCs31x Version-
LexmarkCs41x Firmware Version <= lw74.vy2.p272
   LexmarkCs41x Version-
LexmarkCs51x Firmware Version <= lw74.vy4.p272
   LexmarkCs51x Version-
LexmarkCx310 Firmware Version <= lw74.gm2.p272
   LexmarkCx310 Version-
LexmarkCx410 Firmware Version <= lw74.gm4.p272
   LexmarkCx410 Version-
LexmarkXc2130 Firmware Version <= lw74.gm4.p272
   LexmarkXc2130 Version-
LexmarkCx510 Firmware Version <= lw74.gm7.p272
   LexmarkCx510 Version-
LexmarkXc2132 Firmware Version <= lw74.gm7.p272
   LexmarkXc2132 Version-
LexmarkMs310 Firmware Version <= lw74.prl.p272
   LexmarkMs310 Version-
LexmarkMs312 Firmware Version <= lw74.prl.p272
   LexmarkMs312 Version-
LexmarkMs317 Firmware Version <= lw74.prl.p272
   LexmarkMs317 Version-
LexmarkMs410 Firmware Version <= lw74.prl.p272
   LexmarkMs410 Version-
LexmarkM1140 Firmware Version <= lw74.prl.p272
   LexmarkM1140 Version-
LexmarkMs315 Firmware Version <= lw74.tl2.p272
   LexmarkMs315 Version-
LexmarkMs415 Firmware Version <= lw74.tl2.p272
   LexmarkMs415 Version-
LexmarkMs417 Firmware Version <= lw74.tl2.p272
   LexmarkMs417 Version-
LexmarkMs51x Firmware Version <= lw74.pr2.p272
   LexmarkMs51x Version-
LexmarkMs610dn Firmware Version <= lw74.pr2.p272
   LexmarkMs610dn Version-
LexmarkMs617 Firmware Version <= lw74.pr2.p272
   LexmarkMs617 Version-
LexmarkM1145 Firmware Version <= lw74.pr2.p272
   LexmarkM1145 Version-
LexmarkM3150dn Firmware Version <= lw74.pr2.p272
   LexmarkM3150dn Version-
LexmarkMs610de Firmware Version <= lw74.pr4.p272
   LexmarkMs610de Version-
LexmarkM3150 Firmware Version <= lw74.pr4.p272
   LexmarkM3150 Version-
LexmarkMs71x Firmware Version <= lw74.dn2.p272
   LexmarkMs71x Version-
LexmarkM5163dn Firmware Version <= lw74.dn2.p272
   LexmarkM5163dn Version-
LexmarkMs810 Firmware Version <= lw74.dn2.p272
   LexmarkMs810 Version-
LexmarkMs811 Firmware Version <= lw74.dn2.p272
   LexmarkMs811 Version-
LexmarkMs812 Firmware Version <= lw74.dn2.p272
   LexmarkMs812 Version-
LexmarkMs817 Firmware Version <= lw74.dn2.p272
   LexmarkMs817 Version-
LexmarkMs818 Firmware Version <= lw74.dn2.p272
   LexmarkMs818 Version-
LexmarkMs810de Firmware Version <= lw74.dn4.p272
   LexmarkMs810de Version-
LexmarkM5155 Firmware Version <= lw74.dn4.p272
   LexmarkM5155 Version-
LexmarkM5163 Firmware Version <= lw74.dn4.p272
   LexmarkM5163 Version-
LexmarkMs812de Firmware Version <= lw74.dn7.p272
   LexmarkMs812de Version-
LexmarkM5170 Firmware Version <= lw74.dn7.p272
   LexmarkM5170 Version-
LexmarkMs91x Firmware Version <= lw74.sa.p272
   LexmarkMs91x Version-
LexmarkMx31x Firmware Version <= lw74.sb2.p272
   LexmarkMx31x Version-
LexmarkXm1135 Firmware Version <= lw74.sb2.p272
   LexmarkXm1135 Version-
LexmarkMx410 Firmware Version <= lw74.sb4.p272
   LexmarkMx410 Version-
LexmarkMx510 Firmware Version <= lw74.sb4.p272
   LexmarkMx510 Version-
LexmarkMx511 Firmware Version <= lw74.sb4.p272
   LexmarkMx511 Version-
LexmarkXm1140 Firmware Version <= lw74.sb4.p272
   LexmarkXm1140 Version-
LexmarkXm1145 Firmware Version <= lw74.sb4.p272
   LexmarkXm1145 Version-
LexmarkMx610 Firmware Version <= lw74.sb7.p272
   LexmarkMx610 Version-
LexmarkMx611 Firmware Version <= lw74.sb7.p272
   LexmarkMx611 Version-
LexmarkXm3150 Firmware Version <= lw74.sb7.p272
   LexmarkXm3150 Version-
LexmarkMx71x Firmware Version <= lw74.tu.p272
   LexmarkMx71x Version-
LexmarkMx81x Firmware Version <= lw74.tu.p272
   LexmarkMx81x Version-
LexmarkXm51xx Firmware Version <= lw74.tu.p272
   LexmarkXm51xx Version-
LexmarkXm71xx Firmware Version <= lw74.tu.p272
   LexmarkXm71xx Version-
LexmarkMx91x Firmware Version <= lw74.mg.p272
   LexmarkMx91x Version-
LexmarkXm91x Firmware Version <= lw74.mg.p272
   LexmarkXm91x Version-
LexmarkMx6500e Firmware Version <= lw74.jd.p272
   LexmarkMx6500e Version-
LexmarkC746 Firmware Version <= lhs60.cm2.p737
   LexmarkC746 Version-
LexmarkC748 Firmware Version <= lhs60.cm4.p737
   LexmarkC748 Version-
LexmarkCs748 Firmware Version <= lhs60.cm4.p737
   LexmarkCs748 Version-
LexmarkC792 Firmware Version <= lhs60.hc.p737
   LexmarkC792 Version-
LexmarkCs796 Firmware Version <= lhs60.hc.p737
   LexmarkCs796 Version-
LexmarkC925 Firmware Version <= lhs60.hv.p737
   LexmarkC925 Version-
LexmarkC950 Firmware Version <= lhs60.tp.p737
   LexmarkC950 Version-
LexmarkX548 Firmware Version <= lhs60.vk.p737
   LexmarkX548 Version-
LexmarkXs548 Firmware Version <= lhs60.vk.p737
   LexmarkXs548 Version-
LexmarkX74x Firmware Version <= lhs60.ny.p737
   LexmarkX74x Version-
LexmarkXs748 Firmware Version <= lhs60.ny.p737
   LexmarkXs748 Version-
LexmarkX792 Firmware Version <= lhs60.mr.p737
   LexmarkX792 Version-
LexmarkXs79x Firmware Version <= lhs60.mr.p737
   LexmarkXs79x Version-
LexmarkX925 Firmware Version <= lhs60.hk.p737
   LexmarkX925 Version-
LexmarkXs925 Firmware Version <= lhs60.hk.p737
   LexmarkXs925 Version-
LexmarkX95x Firmware Version <= lhs60.tq.p737
   LexmarkX95x Version-
LexmarkXs95x Firmware Version <= lhs60.tq.p737
   LexmarkXs95x Version-
Lexmark6500e Firmware Version <= lhs60.jr.p737
   Lexmark6500e Version-
LexmarkC734 Firmware Version <= lr.sk.p824
   LexmarkC734 Version-
LexmarkC736 Firmware Version <= lr.ske.p824
   LexmarkC736 Version-
LexmarkE46x Firmware Version <= lr.lbh.p824
   LexmarkE46x Version-
LexmarkT65x Firmware Version <= lr.jp.p824
   LexmarkT65x Version-
LexmarkX46x Firmware Version <= lr.bs.p824
   LexmarkX46x Version-
LexmarkX65x Firmware Version <= lr.mn.p824
   LexmarkX65x Version-
LexmarkX73x Firmware Version <= lr.fl.p824
   LexmarkX73x Version-
LexmarkW850 Firmware Version <= lp.jb.p823
   LexmarkW850 Version-
LexmarkX86x Firmware Version <= lp.sp.p823
   LexmarkX86x Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.35% 0.57
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.4 2.3 2.7
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
nvd@nist.gov 3.5 6.8 2.9
AV:N/AC:M/Au:S/C:N/I:P/A:N
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.