CVE-2019-6489

Certain Lexmark CX, MX, X, XC, XM, XS, and 6500e devices before 2019-02-11 allow remote attackers to erase stored shortcuts.

CVSS v3.0 5.3 MEDIUM
CVSS v2.0 6.4 MEDIUM

5.3^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

6.4^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:P/A:P

Exploitability : 10.0 / Impact : 4.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://support.lexmark.com/index?page=content&id=TE912	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:lexmark:xm5163_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm5163:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:lexmark:xm5170_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm5170:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:lexmark:xm7155_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm7155:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:lexmark:xm7163_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm7163:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:lexmark:xm7170_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm7170:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:lexmark:xm7155x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm7155x:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:lexmark:xm7163x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm7163x:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:lexmark:xm7170x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm7170x:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:lexmark:cx310_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:cx310:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:lexmark:cx410_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:cx410:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:lexmark:cx510_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:cx510:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:lexmark:xc2132_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xc2132:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:lexmark:mx31x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx31x:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:lexmark:mx410_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx410:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:lexmark:mx510_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx510:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:lexmark:mx511_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx511:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:lexmark:xm1145_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm1145:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:lexmark:mx610_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx610:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:lexmark:mx611_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx611:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:lexmark:xm3150_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm3150:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:lexmark:mx71x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx71x:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:lexmark:mx81x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx81x:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:lexmark:mx91x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx91x:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:lexmark:xm91x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm91x:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:lexmark:mx6500e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx6500e:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:lexmark:x548_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x548:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:lexmark:xs548_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xs548:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:lexmark:x74x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x74x:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:lexmark:xs748_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xs748:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:lexmark:x792_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x792:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:lexmark:xs79x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xs79x:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:lexmark:x925_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x925:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:lexmark:xs925_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xs925:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:lexmark:x95x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x95x:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND

cpe:2.3:o:lexmark:xs95x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xs95x:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND

cpe:2.3:o:lexmark:6500e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:6500e:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND

cpe:2.3:o:lexmark:x46x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x46x:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND

cpe:2.3:o:lexmark:x65x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x65x:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND

cpe:2.3:o:lexmark:x73x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x73x:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND

cpe:2.3:o:lexmark:x86x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x86x:-:*:*:*:*:*:*:*

Information

Published : 2019-02-11 13:29

Updated : 2020-08-24 10:37

NVD link : CVE-2019-6489

Mitre link : CVE-2019-6489

JSON object : View

CWE

NVD-CWE-noinfo

Products Affected

lexmark

xm7163_firmware
mx71x
xs748_firmware
x86x_firmware
xm7170x
mx610_firmware
xm1145_firmware
xm3150_firmware
mx611_firmware
mx511
xs548
x73x
xc2132
cx510
xm7170_firmware
mx610
x792
xm3150
xs79x_firmware
6500e_firmware
x65x_firmware
xs95x
x65x
x95x_firmware
x792_firmware
x925_firmware
xm7155x
mx31x
xm7170
mx6500e_firmware
xs548_firmware
xs925_firmware
xm7163x
cx310_firmware
x95x
6500e
xm7170x_firmware
mx71x_firmware
mx510_firmware
cx510_firmware
x46x_firmware
xm7163x_firmware
xm7163
mx91x
mx81x
mx511_firmware
xm91x
cx310
mx6500e
x74x_firmware
xs925
xm1145
x925
x74x
xs748
x548_firmware
xs79x
x548
x73x_firmware
x86x
xm5163
mx410_firmware
xm5163_firmware
xc2132_firmware
xm7155
xm5170_firmware
mx611
xm91x_firmware
xm5170
cx410_firmware
x46x
xm7155x_firmware
mx410
mx510
mx81x_firmware
mx31x_firmware
xs95x_firmware
xm7155_firmware
mx91x_firmware
cx410

5.3 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

6.4 /10

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact PARTIAL

JSON object

Attach tags to CVE-2019-6489

5.3^/10

6.4^/10

Attach tags to `CVE-2019-6489`