CVE-2019-9932

high-risk
Published 2019-08-28

Various Lexmark products have a Buffer Overflow (issue 2 of 3).

Do I need to act?

-
0.48% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (20)

Cs31X Firmware
Cs41X Firmware
Ms310 Firmware
Ms312 Firmware
Ms317 Firmware
Ms410 Firmware
M1140 Firmware
Ms315 Firmware
Ms415 Firmware
Ms417 Firmware
Ms51X Firmware
Ms610Dn Firmware
Ms617 Firmware
M1145 Firmware
M3150Dn Firmware
Ms71X Firmware
M5163Dn Firmware
Ms810 Firmware
Ms811 Firmware

Affected Vendors

Lexmark

References (2)

Vendor Advisory http://support.lexmark.com/index?page=content&id=TE920&locale=EN&userlocale=EN_U...
Vendor Advisory http://support.lexmark.com/index?page=content&id=TE920&locale=EN&userlocale=EN_U...
62
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 2/34 · Minimal
Exposure 28/34 · Critical