Lexmark Printer Drivers for Windows XML External Entity Reference Vulnerability Allowing Sensitive Information Disclosure

Vulnerability

A vulnerability exists in various Lexmark printer drivers for Windows due to improper restriction of XML external entity references. This flaw enables an attacker to disclose sensitive information by sending data to an arbitrary URL.

Impact

Exploitation of this vulnerability could lead to unauthorized disclosure of sensitive information.

Added: Aug 19, 2025, 2:21 PM

Updated: Aug 19, 2025, 2:21 PM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

4.6

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

4.6

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Lexmark Printer Drivers for Windows XML External Entity Reference Vulnerability Allowing Sensitive Information Disclosure

Vulnerability

Impact

Affected Products

Lexmark printer drivers

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating