Denial of Service Vulnerability in Lenovo LJ4010DN Printer Firmware
CVE-2020-8329

5.3MEDIUM

Key Information:

Vendor: Lenovo
Status: Printer Lj4010dn
Vendor: CVE Published:; 28 May 2020

Summary

A denial of service vulnerability exists in the firmware of Lenovo LJ4010DN printers prior to version 1.01. This vulnerability can be exploited by a remote attacker who sends a specially crafted packet to the printer, resulting in an error that disrupts its functionality. The printer may require a reboot to restore normal operations, impacting users' productivity and potentially leading to unplanned downtime.

Affected Version(s)

Printer LJ4010DN < 1.01

References

https://iknow.lenovo.com.cn/detail/dc_188830.html

x_refsource_MISC

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 28, 2020
Vulnerability Reserved
Jan 28, 2020

Credit

Lenovo thanks Xiaoyu He, Erick Bauman, and Linyu Li for reporting these issues.