CVE-2018-15519

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2018-15519
Various Lexmark devices have a Buffer Overflow (issue 1 of 2).

9.8 /10

CVSS v3.0 : CRITICAL

V3 Legend

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

7.5 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://support.lexmark.com/index?page=content&id=TE892 Vendor Advisory
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:lexmark:cx310_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:cx310:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:lexmark:cx410_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:cx410:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:lexmark:cx510_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:cx510:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:lexmark:xc2132_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:xc2132:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:lexmark:mx31x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:mx31x:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:lexmark:mx41x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:mx41x:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:lexmark:mx51x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:mx51x:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:lexmark:xm1145_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:xm1145:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:lexmark:mx61x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:mx61x:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:lexmark:xm3150_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:xm3150:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:lexmark:mx71x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:mx71x:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:lexmark:mx81x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:mx81x:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:lexmark:xm51xx_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:xm51xx:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:lexmark:xm71xx_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:xm71xx:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:lexmark:mx91x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:mx91x:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:lexmark:xm91x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:xm91x:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:lexmark:mx6500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:mx6500:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:lexmark:x54x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x54x:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:lexmark:xs54x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:xs54x:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:lexmark:x74x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x74x:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:lexmark:xs74x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:xs74x:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:lexmark:x79x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x79x:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:lexmark:xs79x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:xs79x:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:lexmark:x92x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x92x:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:lexmark:xs92x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:xs92x:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:lexmark:x95x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x95x:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:lexmark:xs95x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:xs95x:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND
cpe:2.3:o:lexmark:6500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:6500:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND
cpe:2.3:o:lexmark:x46x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x46x:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND
cpe:2.3:o:lexmark:x65x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x65x:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND
cpe:2.3:o:lexmark:x73x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x73x:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND
cpe:2.3:o:lexmark:x86x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x86x:-:*:*:*:*:*:*:*
Information

Published : 2019-06-28 10:15

Updated : 2019-07-05 06:18

NVD link : CVE-2018-15519

Mitre link : CVE-2018-15519

JSON object : View

CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Advertisement

dedicated server usa
Products Affected

lexmark

  • mx71x
  • x86x_firmware
  • xm1145_firmware
  • xm3150_firmware
  • xs54x_firmware
  • xs74x
  • xs92x_firmware
  • x73x
  • xc2132
  • cx510
  • x79x_firmware
  • xs79x_firmware
  • x65x_firmware
  • xm3150
  • x65x
  • xs95x
  • x95x_firmware
  • mx6500
  • mx31x
  • x95x
  • cx310_firmware
  • xm71xx
  • mx41x
  • x54x
  • 6500_firmware
  • mx51x
  • mx71x_firmware
  • x46x_firmware
  • mx61x
  • mx91x
  • mx81x
  • xm91x
  • 6500
  • cx310
  • x74x_firmware
  • xm1145
  • mx6500_firmware
  • x92x
  • xm51xx_firmware
  • x74x
  • xs79x
  • x73x_firmware
  • mx61x_firmware
  • x86x
  • xm51xx
  • xs95x_firmware
  • xc2132_firmware
  • xs92x
  • xm91x_firmware
  • xm71xx_firmware
  • xs54x
  • x79x
  • cx410_firmware
  • mx41x_firmware
  • x46x
  • mx81x_firmware
  • mx31x_firmware
  • x54x_firmware
  • cx510_firmware
  • xs74x_firmware
  • mx91x_firmware
  • x92x_firmware
  • mx51x_firmware
  • cx410