CVE-2011-4538

Published: Mar 9, 2020Modified: Nov 21, 2024

5.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Exploitability: 3.9 / Impact: 1.4

Source: NVD

Description

Lexmark X, W, T, E, and C devices before 2012-02-09 allow attackers to obtain sensitive information by reading passwords within exported settings.

Affected (33)

Products: Lexmark: X860 Firmware, X862 Firmware, X864 Firmware, X734 Firmware, X736 Firmware, X738 Firmware, X651 Firmware, X652 Firmware, X654 Firmware, X656 Firmware, X658 Firmware, X543 Firmware, X544 Firmware, X546 Firmware, X463 Firmware, X464 Firmware, X466 Firmware, X363 Firmware, X364 Firmware, W850 Firmware, T650 Firmware, T652 Firmware, T654 Firmware, E460 Firmware, E462 Firmware, E360 Firmware, E260 Firmware, C734 Firmware, C736 Firmware, C546 Firmware, C540 Firmware, C543 Firmware, C544 Firmware

33 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X860 Firmware	Up to lp.sp.p108

Running on/with	Platform Versions
Lexmark X860	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X862 Firmware	Up to lp.sp.p108

Running on/with	Platform Versions
Lexmark X862	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X864 Firmware	Up to lp.sp.p108

Running on/with	Platform Versions
Lexmark X864	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X734 Firmware	Up to lr.fl.p224c

Running on/with	Platform Versions
Lexmark X734	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X736 Firmware	Up to lr.fl.p224c

Running on/with	Platform Versions
Lexmark X736	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X738 Firmware	Up to lr.fl.p224c

Running on/with	Platform Versions
Lexmark X738	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X651 Firmware	Up to lr.mn.p224a

Running on/with	Platform Versions
Lexmark X651	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X652 Firmware	Up to lr.mn.p224a

Running on/with	Platform Versions
Lexmark X652	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X654 Firmware	Up to lr.mn.p224a

Running on/with	Platform Versions
Lexmark X654	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X656 Firmware	Up to lr.mn.p224a

Running on/with	Platform Versions
Lexmark X656	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X658 Firmware	Up to lr.mn.p224a

Running on/with	Platform Versions
Lexmark X658	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X543 Firmware	Up to ll.el.p511

Running on/with	Platform Versions
Lexmark X543	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X544 Firmware	Up to ll.el.p511

Running on/with	Platform Versions
Lexmark X544	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X546 Firmware	Up to ll.el.p511

Running on/with	Platform Versions
Lexmark X546	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X463 Firmware	Up to lr.bs.p224a

Running on/with	Platform Versions
Lexmark X463	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X464 Firmware	Up to lr.bs.p224a

Running on/with	Platform Versions
Lexmark X464	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X466 Firmware	Up to lr.bs.p224a

Running on/with	Platform Versions
Lexmark X466	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X363 Firmware	Up to ll.bz.p511

Running on/with	Platform Versions
Lexmark X363	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark X364 Firmware	Up to ll.bz.p511

Running on/with	Platform Versions
Lexmark X364	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark W850 Firmware	Up to lp.jb.p108

Running on/with	Platform Versions
Lexmark W850	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark T650 Firmware	Up to lr.jp.p224a

Running on/with	Platform Versions
Lexmark T650	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark T652 Firmware	Up to lr.jp.p224a

Running on/with	Platform Versions
Lexmark T652	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark T654 Firmware	Up to lr.jp.p224a

Running on/with	Platform Versions
Lexmark T654	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark E460 Firmware	Up to lr.lbh.p224a

Running on/with	Platform Versions
Lexmark E460	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark E462 Firmware	Up to lr.lbh.p224a

Running on/with	Platform Versions
Lexmark E462	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark E360 Firmware	Up to ll.lbm.p511

Running on/with	Platform Versions
Lexmark E360	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark E260 Firmware	Up to ll.lbl.p511

Running on/with	Platform Versions
Lexmark E260	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark C734 Firmware	Up to lr.sk.p224a

Running on/with	Platform Versions
Lexmark C734	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark C736 Firmware	Up to lr.sk.p224a

Running on/with	Platform Versions
Lexmark C736	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark C546 Firmware	Up to lu.as.p511

Running on/with	Platform Versions
Lexmark C546	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark C540 Firmware	Up to ll.as.p511

Running on/with	Platform Versions
Lexmark C540	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark C543 Firmware	Up to ll.as.p511

Running on/with	Platform Versions
Lexmark C543	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Lexmark C544 Firmware	Up to ll.as.p511

Running on/with	Platform Versions
Lexmark C544	All versions

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (2)

http://contentdelivery.lexmark.com/webcontent/CVE-2011-4538.pdf

Source: cve@mitre.org

Third Party Advisory

http://contentdelivery.lexmark.com/webcontent/CVE-2011-4538.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.