CVE-2011-4538

Lexmark X, W, T, E, and C devices before 2012-02-09 allow attackers to obtain sensitive information by reading passwords within exported settings.

CVSS v3.0 5.3 MEDIUM
CVSS v2.0 5.0 MEDIUM

5.3^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://contentdelivery.lexmark.com/webcontent/CVE-2011-4538.pdf	Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:lexmark:x860_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x860:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:lexmark:x862_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x862:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:lexmark:x864_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x864:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:lexmark:x734_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x734:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:lexmark:x736_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x736:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:lexmark:x738_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x738:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:lexmark:x651_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x651:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:lexmark:x652_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x652:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:lexmark:x654_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x654:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:lexmark:x656_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x656:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:lexmark:x658_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x658:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:lexmark:x543_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x543:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:lexmark:x544_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x544:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:lexmark:x546_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x546:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:lexmark:x463_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x463:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:lexmark:x464_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x464:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:lexmark:x466_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x466:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:lexmark:x363_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x363:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:lexmark:x364_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x364:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:lexmark:w850_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:w850:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:lexmark:t650_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:t650:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:lexmark:t652_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:t652:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:lexmark:t654_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:t654:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:lexmark:e460_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:e460:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:lexmark:e462_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:e462:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:lexmark:e360_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:e360:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:lexmark:e260_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:e260:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:lexmark:c734_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:c734:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:lexmark:c736_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:c736:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:lexmark:c546_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:c546:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:lexmark:c540_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:c540:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:lexmark:c543_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:c543:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:lexmark:c544_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:c544:-:*:*:*:*:*:*:*

Information

Published : 2020-03-09 12:15

Updated : 2020-03-10 12:55

NVD link : CVE-2011-4538

Mitre link : CVE-2011-4538

JSON object : View

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Products Affected

lexmark

x734
x464
x864_firmware
x463
t652
x652_firmware
x652
c734_firmware
e462_firmware
x658
w850_firmware
e360
t650_firmware
t652_firmware
x738
x651_firmware
c546
t654_firmware
x546
x656_firmware
e460_firmware
t650
x860
x466_firmware
c543
x658_firmware
t654
x736_firmware
x862_firmware
x544
x463_firmware
x363_firmware
x464_firmware
x364_firmware
e360_firmware
w850
x860_firmware
e260_firmware
c546_firmware
x862
c540_firmware
c736_firmware
x546_firmware
e260
x466
c734
c543_firmware
c544_firmware
x734_firmware
x543_firmware
x364
x651
c540
x654
c544
e462
x738_firmware
x656
x363
x654_firmware
x736
e460
x544_firmware
c736
x864
x543

5.3 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0 /10

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

JSON object

Attach tags to CVE-2011-4538

5.3^/10

5.0^/10

Attach tags to `CVE-2011-4538`