CVE-2018-15520 - OpenCVE

Various Lexmark devices have a Buffer Overflow (issue 2 of 2).

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Lexmark	Cx421 Cx421 Firmware Cx522 Cx522 Firmware Cx62x Cx62x Firmware Cx72x Cx72x Firmware Cx82x Cx82x Firmware Cx860 Cx860 Firmware Cx92x Cx92x Firmware Mb2338 Mb2338 Firmware Mb2442 Mb2442 Firmware Mb2546 Mb2546 Firmware Mb2650 Mb2650 Firmware Mb2770 Mb2770 Firmware Mc2325 Mc2325 Firmware Mc2425 Mc2425 Firmware Mc2535 Mc2535 Firmware Mc2640 Mc2640 Firmware Mx321 Mx321 Firmware Mx42x Mx42x Firmware Mx52x Mx52x Firmware Mx622 Mx622 Firmware Mx72x Mx72x Firmware Mx82x Mx82x Firmware Xc2235 Xc2235 Firmware Xc41x0 Xc41x0 Firmware Xc4240 Xc4240 Firmware Xc6152 Xc6152 Firmware Xc8155 Xc8155 Firmware Xc8160 Xc8160 Firmware Xc92x5 Xc92x5 Firmware Xm124x Xm124x Firmware Xm3250 Xm3250 Firmware Xm5370 Xm5370 Firmware Xm7355 Xm7355 Firmware Xm7370 Xm7370 Firmware

Configuration 1 [-]

AND

OR	cpe:2.3:o:lexmark:cx82x_firmware::::::::
	cpe:2.3:o:lexmark:cx82x_firmware::::::::

cpe:2.3:h:lexmark:cx82x:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

OR	cpe:2.3:o:lexmark:cx860_firmware::::::::
	cpe:2.3:o:lexmark:cx860_firmware::::::::

cpe:2.3:h:lexmark:cx860:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

OR	cpe:2.3:o:lexmark:xc6152_firmware::::::::
	cpe:2.3:o:lexmark:xc6152_firmware::::::::

cpe:2.3:h:lexmark:xc6152:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

OR	cpe:2.3:o:lexmark:xc8155_firmware::::::::
	cpe:2.3:o:lexmark:xc8155_firmware::::::::

cpe:2.3:h:lexmark:xc8155:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

OR	cpe:2.3:o:lexmark:xc8160_firmware::::::::
	cpe:2.3:o:lexmark:xc8160_firmware::::::::

cpe:2.3:h:lexmark:xc8160:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

OR	cpe:2.3:o:lexmark:cx72x_firmware::::::::
	cpe:2.3:o:lexmark:cx72x_firmware::::::::

cpe:2.3:h:lexmark:cx72x:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

OR	cpe:2.3:o:lexmark:xc41x0_firmware::::::::
	cpe:2.3:o:lexmark:xc41x0_firmware::::::::

cpe:2.3:h:lexmark:xc41x0:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

OR	cpe:2.3:o:lexmark:cx92x_firmware::::::::
	cpe:2.3:o:lexmark:cx92x_firmware::::::::

cpe:2.3:h:lexmark:cx92x:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

OR	cpe:2.3:o:lexmark:xc92x5_firmware::::::::
	cpe:2.3:o:lexmark:xc92x5_firmware::::::::

cpe:2.3:h:lexmark:xc92x5:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

OR	cpe:2.3:o:lexmark:mx321_firmware::::::::
	cpe:2.3:o:lexmark:mx321_firmware::::::::

cpe:2.3:h:lexmark:mx321:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

OR	cpe:2.3:o:lexmark:mb2338_firmware::::::::
	cpe:2.3:o:lexmark:mb2338_firmware::::::::

cpe:2.3:h:lexmark:mb2338:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

OR	cpe:2.3:o:lexmark:mx42x_firmware::::::::
	cpe:2.3:o:lexmark:mx42x_firmware::::::::

cpe:2.3:h:lexmark:mx42x:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

OR	cpe:2.3:o:lexmark:mx52x_firmware::::::::
	cpe:2.3:o:lexmark:mx52x_firmware::::::::

cpe:2.3:h:lexmark:mx52x:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

OR	cpe:2.3:o:lexmark:mx622_firmware::::::::
	cpe:2.3:o:lexmark:mx622_firmware::::::::

cpe:2.3:h:lexmark:mx622:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

OR	cpe:2.3:o:lexmark:mb2442_firmware::::::::
	cpe:2.3:o:lexmark:mb2442_firmware::::::::

cpe:2.3:h:lexmark:mb2442:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

OR	cpe:2.3:o:lexmark:mb2546_firmware::::::::
	cpe:2.3:o:lexmark:mb2546_firmware::::::::

cpe:2.3:h:lexmark:mb2546:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

OR	cpe:2.3:o:lexmark:mb2650_firmware::::::::
	cpe:2.3:o:lexmark:mb2650_firmware::::::::

cpe:2.3:h:lexmark:mb2650:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

OR	cpe:2.3:o:lexmark:xm124x_firmware::::::::
	cpe:2.3:o:lexmark:xm124x_firmware::::::::

cpe:2.3:h:lexmark:xm124x:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

OR	cpe:2.3:o:lexmark:xm3250_firmware::::::::
	cpe:2.3:o:lexmark:xm3250_firmware::::::::

cpe:2.3:h:lexmark:xm3250:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

OR	cpe:2.3:o:lexmark:mx72x_firmware::::::::
	cpe:2.3:o:lexmark:mx72x_firmware::::::::

cpe:2.3:h:lexmark:mx72x:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

OR	cpe:2.3:o:lexmark:mx82x_firmware::::::::
	cpe:2.3:o:lexmark:mx82x_firmware::::::::

cpe:2.3:h:lexmark:mx82x:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

OR	cpe:2.3:o:lexmark:mb2770_firmware::::::::
	cpe:2.3:o:lexmark:mb2770_firmware::::::::

cpe:2.3:h:lexmark:mb2770:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

OR	cpe:2.3:o:lexmark:xm5370_firmware::::::::
	cpe:2.3:o:lexmark:xm5370_firmware::::::::

cpe:2.3:h:lexmark:xm5370:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

OR	cpe:2.3:o:lexmark:xm7355_firmware::::::::
	cpe:2.3:o:lexmark:xm7355_firmware::::::::

cpe:2.3:h:lexmark:xm7355:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

OR	cpe:2.3:o:lexmark:xm7370_firmware::::::::
	cpe:2.3:o:lexmark:xm7370_firmware::::::::

cpe:2.3:h:lexmark:xm7370:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

OR	cpe:2.3:o:lexmark:cx421_firmware::::::::
	cpe:2.3:o:lexmark:cx421_firmware::::::::

cpe:2.3:h:lexmark:cx421:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

OR	cpe:2.3:o:lexmark:mc2325_firmware::::::::
	cpe:2.3:o:lexmark:mc2325_firmware::::::::

cpe:2.3:h:lexmark:mc2325:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

OR	cpe:2.3:o:lexmark:mc2425_firmware::::::::
	cpe:2.3:o:lexmark:mc2425_firmware::::::::

cpe:2.3:h:lexmark:mc2425:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

OR	cpe:2.3:o:lexmark:cx522_firmware::::::::
	cpe:2.3:o:lexmark:cx522_firmware::::::::

cpe:2.3:h:lexmark:cx522:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

OR	cpe:2.3:o:lexmark:cx62x_firmware::::::::
	cpe:2.3:o:lexmark:cx62x_firmware::::::::

cpe:2.3:h:lexmark:cx62x:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

OR	cpe:2.3:o:lexmark:mc2535_firmware::::::::
	cpe:2.3:o:lexmark:mc2535_firmware::::::::

cpe:2.3:h:lexmark:mc2535:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

OR	cpe:2.3:o:lexmark:mc2640_firmware::::::::
	cpe:2.3:o:lexmark:mc2640_firmware::::::::

cpe:2.3:h:lexmark:mc2640:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

OR	cpe:2.3:o:lexmark:xc2235_firmware::::::::
	cpe:2.3:o:lexmark:xc2235_firmware::::::::

cpe:2.3:h:lexmark:xc2235:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

OR	cpe:2.3:o:lexmark:xc4240_firmware::::::::
	cpe:2.3:o:lexmark:xc4240_firmware::::::::

cpe:2.3:h:lexmark:xc4240:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://support.lexmark.com/index?page=content&id=TE892

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-06-28T15:25:12

Updated: 2024-08-05T09:54:03.766Z

Reserved: 2018-08-18T00:00:00

Link: CVE-2018-15520

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2019-06-28T16:15:09.463

Modified: 2019-07-05T15:47:02.807

Link: CVE-2018-15520

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object