Lenovo Printers Vulnerable to Denial of Service Attacks
CVE-2024-27912

7.5HIGH

Key Information:

Vendor: Lenovo
Status: Printers
Vendor: CVE Published:; 5 April 2024

Summary

A denial of service vulnerability has been identified in certain models of Lenovo printers. This issue allows attackers to disrupt normal printer functionality by transmitting specially crafted Line Printer Daemon (LPD) packets. The exploitation of this vulnerability may lead to unexpected device crashes, impairing operational efficiency and reliability. Organizations using affected Lenovo printer series are advised to implement security measures to mitigate potential risks associated with this vulnerability.

Affected Version(s)

Printers Various

References

https://iknow.lenovo.com.cn/detail/420425

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 5, 2024

Credit

Lenovo thanks Jia-Ju Bai, Wen-Han Xu, Rui-Nan Hu, Dong Zhang, Cheng Li, Zhen-Yu Guan, and Jian-Wei Liu of the School of Cyber Science and Technology of Beihang University for reporting these issues.