CVE-2011-3269 : Lexmark X, W, T, E, C, 6500e, and 25xxN devices before 2011-11-15 allow attacker

Lexmark X, W, T, E, C, 6500e, and 25xxN devices before 2011-11-15 allow attackers to obtain sensitive information via a hidden email address in a Scan To Email shortcut.

Published 2020-03-09 19:15:12

Updated 2020-03-10 19:52:33

Source MITRE

View at NVD, CVE.org

Vulnerability category: Information leak

Products affected by CVE-2011-3269

Lexmark » X46x Firmware
Versions up to, including, (<=) lr.bs.p510b
cpe:2.3:o:lexmark:x46x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X46x » Version: N/A
Lexmark » C950 Firmware
Versions up to, including, (<=) lhs1.tp.p145h
cpe:2.3:o:lexmark:c950_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C950 » Version: N/A
Lexmark » 6500e Firmware
Versions up to, including, (<=) ljr.jr.p169
cpe:2.3:o:lexmark:6500e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » 6500e » Version: N/A
Lexmark » C734 Firmware
Versions up to, including, (<=) lr.sk.p510
cpe:2.3:o:lexmark:c734_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C734 » Version: N/A
Lexmark » C736 Firmware
Versions up to, including, (<=) lr.sk.p510
cpe:2.3:o:lexmark:c736_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C736 » Version: N/A
Lexmark » W850 Firmware
Versions up to, including, (<=) lp.jb.p510
cpe:2.3:o:lexmark:w850_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » W850 » Version: N/A
Lexmark » X950 Firmware
Versions up to, including, (<=) lhs1.tq.p145h
cpe:2.3:o:lexmark:x950_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X950 » Version: N/A
Lexmark » X952 Firmware
Versions up to, including, (<=) lhs1.tq.p145h
cpe:2.3:o:lexmark:x952_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X952 » Version: N/A
Lexmark » X954 Firmware
Versions up to, including, (<=) lhs1.tq.p145h
cpe:2.3:o:lexmark:x954_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X954 » Version: N/A
Lexmark » X940e Firmware
Versions up to, including, (<=) lc.br.p051hds
cpe:2.3:o:lexmark:x940e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X940e » Version: N/A
Lexmark » X945e Firmware
Versions up to, including, (<=) lc.br.p051hds
cpe:2.3:o:lexmark:x945e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X945e » Version: N/A
Lexmark » X925de Firmware
Versions up to, including, (<=) lhs1.hk.p136l
cpe:2.3:o:lexmark:x925de_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X925de » Version: N/A
Lexmark » X860 Firmware
Versions up to, including, (<=) lp.sp.p510b
cpe:2.3:o:lexmark:x860_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X860 » Version: N/A
Lexmark » X862 Firmware
Versions up to, including, (<=) lp.sp.p510b
cpe:2.3:o:lexmark:x862_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X862 » Version: N/A
Lexmark » X864 Firmware
Versions up to, including, (<=) lp.sp.p510b
cpe:2.3:o:lexmark:x864_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X864 » Version: N/A
Lexmark » X850 Firmware
Versions up to, including, (<=) lc4.be.p457s
cpe:2.3:o:lexmark:x850_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X850 » Version: N/A
Lexmark » X852 Firmware
Versions up to, including, (<=) lc4.be.p457s
cpe:2.3:o:lexmark:x852_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X852 » Version: N/A
Lexmark » X854 Firmware
Versions up to, including, (<=) lc4.be.p457s
cpe:2.3:o:lexmark:x854_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X854 » Version: N/A
Lexmark » X792de Firmware
Versions up to, including, (<=) lhs1.mr.p135l
cpe:2.3:o:lexmark:x792de_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X792de » Version: N/A
Lexmark » X782e Firmware
Versions up to, including, (<=) lc2.to.p305cs
cpe:2.3:o:lexmark:x782e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X782e » Version: N/A
Lexmark » X772e Firmware
Versions up to, including, (<=) lc.tr.p275s
cpe:2.3:o:lexmark:x772e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X772e » Version: N/A
Lexmark » X734 Firmware
Versions up to, including, (<=) lr.fl.p510b
cpe:2.3:o:lexmark:x734_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X734 » Version: N/A
Lexmark » X736 Firmware
Versions up to, including, (<=) lr.fl.p510b
cpe:2.3:o:lexmark:x736_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X736 » Version: N/A
Lexmark » X738 Firmware
Versions up to, including, (<=) lr.fl.p510b
cpe:2.3:o:lexmark:x738_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X738 » Version: N/A
Lexmark » X650 Firmware
Versions up to, including, (<=) lr.mn.p510b
cpe:2.3:o:lexmark:x650_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X650 » Version: N/A
Lexmark » X644 Firmware
Versions up to, including, (<=) lc2.mc.p307as
cpe:2.3:o:lexmark:x644_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X644 » Version: N/A
Lexmark » X646 Firmware
Versions up to, including, (<=) lc2.mc.p307as
cpe:2.3:o:lexmark:x646_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X646 » Version: N/A
Lexmark » X642 Firmware
Versions up to, including, (<=) lc2.mb.p307cs
cpe:2.3:o:lexmark:x642_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X642 » Version: N/A
Lexmark » X548de Firmware
Versions up to, including, (<=) lhs1.vk.p141i
cpe:2.3:o:lexmark:x548de_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X548de » Version: N/A
Lexmark » X546 Firmware
Versions up to, including, (<=) ll.el.p433
cpe:2.3:o:lexmark:x546_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X546 » Version: N/A
Lexmark » X543 Firmware
Versions up to, including, (<=) ll.el.p433
cpe:2.3:o:lexmark:x543_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X543 » Version: N/A
Lexmark » X544 Firmware
Versions up to, including, (<=) ll.el.p433
cpe:2.3:o:lexmark:x544_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X544 » Version: N/A
Lexmark » X422 Firmware
Versions up to, including, (<=) gn.aq.p202
cpe:2.3:o:lexmark:x422_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X422 » Version: N/A
Lexmark » X36x Firmware
Versions up to, including, (<=) ll.bz.p433
cpe:2.3:o:lexmark:x36x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X36x » Version: N/A
Lexmark » X34x Firmware
Versions up to, including, (<=) 401.ec4
cpe:2.3:o:lexmark:x34x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X34x » Version: N/A
Lexmark » X264 Firmware
Versions up to, including, (<=) lm1.mt.p232
cpe:2.3:o:lexmark:x264_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X264 » Version: N/A
Lexmark » W840 Firmware
Versions up to, including, (<=) ls.ha.p121s
cpe:2.3:o:lexmark:w840_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » W840 » Version: N/A
Lexmark » T656 Firmware
Versions up to, including, (<=) lsj.sj.p019s
cpe:2.3:o:lexmark:t656_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » T656 » Version: N/A
Lexmark » T650 Firmware
Versions up to, including, (<=) lr.jp.p510
cpe:2.3:o:lexmark:t650_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » T650 » Version: N/A
Lexmark » T652 Firmware
Versions up to, including, (<=) lr.jp.p510
cpe:2.3:o:lexmark:t652_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » T652 » Version: N/A
Lexmark » T654 Firmware
Versions up to, including, (<=) lr.jp.p510
cpe:2.3:o:lexmark:t654_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » T654 » Version: N/A
Lexmark » T640 Firmware
Versions up to, including, (<=) ls.st.p240s
cpe:2.3:o:lexmark:t640_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » T640 » Version: N/A
Lexmark » T642 Firmware
Versions up to, including, (<=) ls.st.p240s
cpe:2.3:o:lexmark:t642_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » T642 » Version: N/A
Lexmark » T644 Firmware
Versions up to, including, (<=) ls.st.p240s
cpe:2.3:o:lexmark:t644_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » T644 » Version: N/A
Lexmark » T440 Firmware
Versions up to, including, (<=) jx.ju.p101
cpe:2.3:o:lexmark:t440_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » T440 » Version: N/A
Lexmark » E462 Firmware
Versions up to, including, (<=) lr.lbh.p510
cpe:2.3:o:lexmark:e462_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E462 » Version: N/A
Lexmark » E460 Firmware
Versions up to, including, (<=) lr.lbh.p510
cpe:2.3:o:lexmark:e460_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E460 » Version: N/A
Lexmark » E450 Firmware
Versions up to, including, (<=) lm.sz.p113vcref
cpe:2.3:o:lexmark:e450_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E450 » Version: N/A
Lexmark » E350 Firmware
Versions up to, including, (<=) le.ph.p121
cpe:2.3:o:lexmark:e350_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E350 » Version: N/A
Lexmark » E340 Firmware
Versions up to, including, (<=) br.h.p204
cpe:2.3:o:lexmark:e340_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E340 » Version: N/A
Lexmark » E342 Firmware
Versions up to, including, (<=) br.h.p204
cpe:2.3:o:lexmark:e342_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E342 » Version: N/A
Lexmark » E330 Firmware
Versions up to, including, (<=) 141.c09
cpe:2.3:o:lexmark:e330_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E330 » Version: N/A
Lexmark » E332n Firmware
Versions up to, including, (<=) 141.c09
cpe:2.3:o:lexmark:e332n_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E332n » Version: N/A
Lexmark » E234 Firmware
Versions up to, including, (<=) 141.c09
cpe:2.3:o:lexmark:e234_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E234 » Version: N/A
Lexmark » E234n Firmware
Versions up to, including, (<=) 141.c09
cpe:2.3:o:lexmark:e234n_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E234n » Version: N/A
Lexmark » E360 Firmware
Versions up to, including, (<=) ll.lbm.p429f
cpe:2.3:o:lexmark:e360_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E360 » Version: N/A
Lexmark » E260 Firmware
Versions up to, including, (<=) ll.lbl.p429f
cpe:2.3:o:lexmark:e260_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E260 » Version: N/A
Lexmark » E250 Firmware
Versions up to, including, (<=) le.pm.p121
cpe:2.3:o:lexmark:e250_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E250 » Version: N/A
Lexmark » E240n Firmware
Versions up to, including, (<=) br.q.p204
cpe:2.3:o:lexmark:e240n_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E240n » Version: N/A
Lexmark » E240 Firmware
Versions up to, including, (<=) br.m.p204
cpe:2.3:o:lexmark:e240_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E240 » Version: N/A
Lexmark » E238 Firmware
Versions up to, including, (<=) br.m.p204
cpe:2.3:o:lexmark:e238_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E238 » Version: N/A
Lexmark » E232 Firmware
Versions up to, including, (<=) 141.009
cpe:2.3:o:lexmark:e232_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E232 » Version: N/A
Lexmark » E230 Firmware
Versions up to, including, (<=) 141.609
cpe:2.3:o:lexmark:e230_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E230 » Version: N/A
Lexmark » E120 Firmware
Versions up to, including, (<=) le.ul.p040
cpe:2.3:o:lexmark:e120_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » E120 » Version: N/A
Lexmark » C935dn Firmware
Versions up to, including, (<=) lc.jo.p051s
cpe:2.3:o:lexmark:c935dn_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C935dn » Version: N/A
Lexmark » C925de Firmware
Versions up to, including, (<=) lhs1.hv.p129l
cpe:2.3:o:lexmark:c925de_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C925de » Version: N/A
Lexmark » C920 Firmware
Versions up to, including, (<=) ls.ta.p127s
cpe:2.3:o:lexmark:c920_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C920 » Version: N/A
Lexmark » C792e Firmware
Versions up to, including, (<=) lhs1.hc.p131k
cpe:2.3:o:lexmark:c792e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C792e » Version: N/A
Lexmark » C789 Firmware
Versions up to, including, (<=) lc.io.p165as
cpe:2.3:o:lexmark:c789_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C789 » Version: N/A
Lexmark » C782 Firmware
Versions up to, including, (<=) lc.io.p165as
cpe:2.3:o:lexmark:c782_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C782 » Version: N/A
Lexmark » C770 Firmware
Versions up to, including, (<=) lc.cm.p027bs
cpe:2.3:o:lexmark:c770_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C770 » Version: N/A
Lexmark » C772 Firmware
Versions up to, including, (<=) lc.cm.p027bs
cpe:2.3:o:lexmark:c772_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C772 » Version: N/A
Lexmark » C760 Firmware
Versions up to, including, (<=) 971.001
cpe:2.3:o:lexmark:c760_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C760 » Version: N/A
Lexmark » C762 Firmware
Versions up to, including, (<=) 971.001
cpe:2.3:o:lexmark:c762_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C762 » Version: N/A
Lexmark » C546 Firmware
Versions up to, including, (<=) lu.as.p433
cpe:2.3:o:lexmark:c546_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C546 » Version: N/A
Lexmark » C540 Firmware
Versions up to, including, (<=) ll.as.p429a
cpe:2.3:o:lexmark:c540_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C540 » Version: N/A
Lexmark » C530 Firmware
Versions up to, including, (<=) ls.sw.p026avcs
cpe:2.3:o:lexmark:c530_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C530 » Version: N/A
Lexmark » C532 Firmware
Versions up to, including, (<=) ls.sw.p026avcs
cpe:2.3:o:lexmark:c532_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C532 » Version: N/A
Lexmark » C534 Firmware
Versions up to, including, (<=) ls.sw.p026avcs
cpe:2.3:o:lexmark:c534_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C534 » Version: N/A
Lexmark » C520 Firmware
Versions up to, including, (<=) ls.fa.p129s
cpe:2.3:o:lexmark:c520_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C520 » Version: N/A
Lexmark » C522 Firmware
Versions up to, including, (<=) ls.fa.p129s
cpe:2.3:o:lexmark:c522_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C522 » Version: N/A
Lexmark » C524 Firmware
Versions up to, including, (<=) ls.fa.p129s
cpe:2.3:o:lexmark:c524_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C524 » Version: N/A
Lexmark » C510 Firmware
Versions up to, including, (<=) 891.004
cpe:2.3:o:lexmark:c510_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » C510 » Version: N/A
Lexmark » 25xxn Firmware
Versions up to, including, (<=) lcl.cu.p106
cpe:2.3:o:lexmark:25xxn_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » 25xxn » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2011-3269

EPSS FAQ

0.32%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 52 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2011-3269

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2011-3269

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2011-3269

http://contentdelivery.lexmark.com/webcontent/Email_shortcut_vulnerability.pdf

Third Party Advisory

Jump to

Vulnerability Details : CVE-2011-3269

Products affected by CVE-2011-3269

Exploit prediction scoring system (EPSS) score for CVE-2011-3269

CVSS scores for CVE-2011-3269

CWE ids for CVE-2011-3269

References for CVE-2011-3269