Primary

Context

Lexmark MX6500 Incorrect Access Control Vulnerability

Vulnerability

Patched

A vulnerability exists in Lexmark MX6500 devices with firmware LW75.JD.P296 and earlier, allowing for incorrect access control management. This issue arises from a race condition that misreads the state of security jumpers during the boot process, leading to a reset of access controls to default values. The vulnerability can be exploited when the device is powered on or rebooted, causing the access control settings to revert, potentially allowing unauthorized access or actions.

Impact

Exploitation of this vulnerability can reset security access controls to their default values, potentially allowing unauthorized access or actions that should be restricted.

Remediation

Users can upgrade to Lexmark MX6500 firmware version LW75.JD.P297 or later to address this vulnerability. For assistance, contact Lexmark's Technical Support Center.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

5.0

exploitability

3.1

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

5.0

exploitability

3.1

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Lexmark MX6500 Incorrect Access Control Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Lexmark MX6500e

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating