Lexmark PostScript Interpreter Buffer Overflow Vulnerability
CVE-2023-50734

9CRITICAL

Key Information:

Vendor: Lexmark
Status: Various
Vendor: CVE Published:; 28 February 2024

Summary

A buffer overflow vulnerability exists in the PostScript interpreter of various Lexmark devices. This flaw can be exploited by an attacker to execute arbitrary code on the affected systems, potentially leading to unauthorized access and manipulation of device functionalities. Users are advised to review security advisories from Lexmark and apply necessary patches to mitigate potential risks.

Affected Version(s)

various various

References

https://www.lexmark.com/en_us/solutions/security/lexmark-...

vendor-advisory

CVSS V3.1

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Feb 28, 2024
Vulnerability Reserved
Dec 11, 2023

Credit

“Team Viettel” working with Trend Micro’s Zero Day Initiative (ZDI)