CVE-2016-1896

Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypass authentication by leveraging incorrect detection of the security-jumper status.

CVSS v3.0 9.8 CRITICAL
CVSS v2.0 10.0 HIGH

9.8^/10

CVSS v3.0 : CRITICAL

V3 Legend

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://support.lexmark.com/index?page=content&id=TE745	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:lexmark:printer_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lexmark:cs725de::::::::
	cpe:2.3:h:lexmark:cs720de::::::::
	cpe:2.3:h:lexmark:c4150::::::::
	cpe:2.3:h:lexmark:cs725dte::::::::
	cpe:2.3:h:lexmark:cs720dte::::::::

Configuration 2 (hide)

AND

cpe:2.3:o:lexmark:printer_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lexmark:cx725dhe::::::::
	cpe:2.3:h:lexmark:xc4150::::::::
	cpe:2.3:h:lexmark:cx725dthe::::::::
	cpe:2.3:h:lexmark:cx725de::::::::

Configuration 3 (hide)

AND

cpe:2.3:o:lexmark:printer_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lexmark:cs820de::::::::
	cpe:2.3:h:lexmark:c6160::::::::
	cpe:2.3:h:lexmark:cs820dtfe::::::::
	cpe:2.3:h:lexmark:cs820dte::::::::

Configuration 4 (hide)

AND

cpe:2.3:o:lexmark:printer_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lexmark:cx860dtfe::::::::
	cpe:2.3:h:lexmark:cx860de::::::::
	cpe:2.3:h:lexmark:xc6152de::::::::
	cpe:2.3:h:lexmark:cx820de::::::::
	cpe:2.3:h:lexmark:xc8160dte::::::::
	cpe:2.3:h:lexmark:xc8160de::::::::
	cpe:2.3:h:lexmark:xc8155de::::::::
	cpe:2.3:h:lexmark:cx825dte::::::::
	cpe:2.3:h:lexmark:cx825dtfe::::::::
	cpe:2.3:h:lexmark:cx825de::::::::
	cpe:2.3:h:lexmark:cx860dte::::::::
	cpe:2.3:h:lexmark:xc8155dte::::::::
	cpe:2.3:h:lexmark:cx820dtfe::::::::
	cpe:2.3:h:lexmark:xc6152dtfe::::::::

Information

Published : 2016-01-26 21:59

Updated : 2016-01-31 17:16

NVD link : CVE-2016-1896

Mitre link : CVE-2016-1896

JSON object : View

CWE

CWE-264

Permissions, Privileges, and Access Controls

CWE-254

7PK - Security Features

Products Affected

lexmark

cx820de
cx820dtfe
cx725dhe
cs725de
xc6152de
xc8160dte
cs720de
cx860dte
xc8160de
cs725dte
cs820dte
cx725de
c6160
xc4150
cx725dthe
xc8155de
c4150
cx860de
xc8155dte
xc6152dtfe
printer_firmware
cx825dte
cs820dtfe
cs820de
cx825de
cs720dte
cx860dtfe
cx825dtfe

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://support.lexmark.com/index?page=content&id=TE745", "name": "http://support.lexmark.com/index?page=content&id=TE745", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypass authentication by leveraging incorrect detection of the security-jumper status."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-264"}, {"lang": "en", "value": "CWE-254"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2016-1896", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false}, "baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}}, "publishedDate": "2016-01-27T05:59Z", "configurations": {"nodes": [{"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:lexmark:printer_firmware:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "cb.02.048"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:lexmark:cs725de:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cs720de:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:c4150:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cs725dte:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cs720dte:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:lexmark:printer_firmware:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "atl.02.048"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:lexmark:cx725dhe:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:xc4150:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cx725dthe:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cx725de:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:lexmark:printer_firmware:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "yk.02.048"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:lexmark:cs820de:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:c6160:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cs820dtfe:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cs820dte:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:lexmark:printer_firmware:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "pp.02.048"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:lexmark:cx860dtfe:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cx860de:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:xc6152de:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cx820de:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:xc8160dte:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:xc8160de:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:xc8155de:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cx825dte:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cx825dtfe:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cx825de:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cx860dte:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:xc8155dte:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:cx820dtfe:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lexmark:xc6152dtfe:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2016-02-01T01:16Z"}

9.8 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

10.0 /10

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

JSON object

Attach tags to CVE-2016-1896

9.8^/10

10.0^/10

Attach tags to `CVE-2016-1896`