Remote Password Management Flaw in Lexmark Printers
CVE-2013-6032

Currently unrated

Key Information:

Vendor: Lexmark
Status: E450; X772; C935dn; N4000
Vendor: CVE Published:; 4 February 2014

Summary

Lexmark printers exhibit a vulnerability allowing remote attackers to bypass the Password Protect administrative password through the vac.255.GENPASSWORD parameter. This security flaw affects various models of Lexmark printers, with the potential for unauthorized access to sensitive configurations. Users are urged to review their printer settings and update to the latest firmware to mitigate this risk.

References

http://www.kb.cert.org/vuls/id/108062

third-party-advisoryx_refsource_CERT-VN

http://support.lexmark.com/index?page=content&id=TE586

x_refsource_CONFIRM

Timeline

Vulnerability published
Feb 4, 2014
Vulnerability Reserved
Oct 4, 2013