Lexmark Devices Cross-Site Request Forgery Vulnerability Allowing Configuration Changes

Vulnerability

A cross-site request forgery (CSRF) vulnerability has been identified in various Lexmark devices. This vulnerability allows an attacker to manipulate the device's configuration. The issue arises from insufficient validation of user requests, enabling unauthorized changes to be made remotely.

Impact

Exploitation of this vulnerability could lead to unauthorized modifications of the device's configuration, potentially disrupting normal operations or causing other security issues.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

0.6

exploitability

6.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

0.6

exploitability

6.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Lexmark Devices Cross-Site Request Forgery Vulnerability Allowing Configuration Changes

Vulnerability

Impact

Affected Products

Lexmark

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating