Reflected XSS Vulnerability in Older Lexmark Products
CVE-2019-19772

5.4MEDIUM

Key Information:

Vendor: Lexmark
Status: Cs31x Firmware
Vendor: CVE Published:; 6 March 2020

Summary

Various older generation Lexmark products are susceptible to reflected XSS vulnerabilities found in their embedded web servers. This can potentially allow attackers to execute harmful scripts in the context of a user's session, posing a serious security risk. For detailed information on affected products and mitigation strategies, visit Lexmark's official support page.

References

http://support.lexmark.com/index?page=content&id=TE935&lo...

x_refsource_CONFIRM

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Mar 6, 2020
Vulnerability Reserved
Dec 12, 2019