{"Unauthenticated Restart Vulnerability in Lenovo Printers"}

CVE-2024-3286

7.5HIGH

Key Information

Vendor: Lenovo
Status: Printers
Vendor: CVE Published:; 16 May 2024

Summary

A buffer overflow vulnerability was identified in some Lenovo printers that could allow an unauthenticated user to trigger a device restart by sending a specially crafted web request.

Affected Version(s)

Printers = various

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
May 16, 2024
Vulnerability Reserved.
Apr 3, 2024

Collectors

NVD DatabaseMitre Database

Credit

Lenovo thanks China Information Technology Innovation Vulnerability Database (CITIVD) and Chaitin for reporting this issue.