CVE-2019-6489 : Certain Lexmark CX, MX, X, XC, XM, XS, and 6500e devices before 2019-02-11 allow

Certain Lexmark CX, MX, X, XC, XM, XS, and 6500e devices before 2019-02-11 allow remote attackers to erase stored shortcuts.

Published 2019-02-11 21:29:00

Updated 2020-08-24 17:37:01

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2019-6489

Lexmark » Cx310 Firmware
Versions up to, including, (<=) lw71.gm2.p216
cpe:2.3:o:lexmark:cx310_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Cx310 » Version: N/A
Lexmark » Cx410 Firmware
Versions up to, including, (<=) lw71.gm4.p216
cpe:2.3:o:lexmark:cx410_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Cx410 » Version: N/A
Lexmark » Cx510 Firmware
Versions up to, including, (<=) lw71.gm7.p216
cpe:2.3:o:lexmark:cx510_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Cx510 » Version: N/A
Lexmark » Xc2132 Firmware
Versions up to, including, (<=) lw71.gm7.p216
cpe:2.3:o:lexmark:xc2132_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xc2132 » Version: N/A
Lexmark » Mx31x Firmware
Versions up to, including, (<=) lw71.sb2.p216
cpe:2.3:o:lexmark:mx31x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Mx31x » Version: N/A
Lexmark » Xm1145 Firmware
Versions up to, including, (<=) lw71.sb4.p216
cpe:2.3:o:lexmark:xm1145_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xm1145 » Version: N/A
Lexmark » Xm3150 Firmware
Versions up to, including, (<=) lw71.sb7.p216
cpe:2.3:o:lexmark:xm3150_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xm3150 » Version: N/A
Lexmark » Mx71x Firmware
Versions up to, including, (<=) lw71.tu.p216
cpe:2.3:o:lexmark:mx71x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Mx71x » Version: N/A
Lexmark » Mx81x Firmware
Versions up to, including, (<=) lw71.tu.p216
cpe:2.3:o:lexmark:mx81x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Mx81x » Version: N/A
Lexmark » Mx91x Firmware
Versions up to, including, (<=) lw71.mg.p216
cpe:2.3:o:lexmark:mx91x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Mx91x » Version: N/A
Lexmark » Xm91x Firmware
Versions up to, including, (<=) lw71.mg.p216
cpe:2.3:o:lexmark:xm91x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xm91x » Version: N/A
Lexmark » X74x Firmware
Versions up to, including, (<=) lhs60.ny.p682
cpe:2.3:o:lexmark:x74x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X74x » Version: N/A
Lexmark » Xs79x Firmware
Versions up to, including, (<=) lhs60.mr.p682
cpe:2.3:o:lexmark:xs79x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xs79x » Version: N/A
Lexmark » X95x Firmware
Versions up to, including, (<=) lhs60.tq.p682
cpe:2.3:o:lexmark:x95x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X95x » Version: N/A
Lexmark » Xs95x Firmware
Versions up to, including, (<=) lhs60.tq.p682
cpe:2.3:o:lexmark:xs95x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xs95x » Version: N/A
Lexmark » X46x Firmware
Versions up to, including, (<=) lr.bs.p809
cpe:2.3:o:lexmark:x46x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X46x » Version: N/A
Lexmark » X65x Firmware
Versions up to, including, (<=) lr.mn.p809
cpe:2.3:o:lexmark:x65x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X65x » Version: N/A
Lexmark » X73x Firmware
Versions up to, including, (<=) lr.fl.p809
cpe:2.3:o:lexmark:x73x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X73x » Version: N/A
Lexmark » X86x Firmware
Versions up to, including, (<=) lp.sp.p809
cpe:2.3:o:lexmark:x86x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X86x » Version: N/A
Lexmark » Mx410 Firmware
Versions up to, including, (<=) lw71.sb4.p216
cpe:2.3:o:lexmark:mx410_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Mx410 » Version: N/A
Lexmark » Mx510 Firmware
Versions up to, including, (<=) lw71.sb4.p216
cpe:2.3:o:lexmark:mx510_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Mx510 » Version: N/A
Lexmark » Mx511 Firmware
Versions up to, including, (<=) lw71.sb4.p216
cpe:2.3:o:lexmark:mx511_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Mx511 » Version: N/A
Lexmark » Mx610 Firmware
Versions up to, including, (<=) lw71.sb7.p216
cpe:2.3:o:lexmark:mx610_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Mx610 » Version: N/A
Lexmark » Mx611 Firmware
Versions up to, including, (<=) lw71.sb7.p216
cpe:2.3:o:lexmark:mx611_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Mx611 » Version: N/A
Lexmark » Mx6500e Firmware
Versions up to, including, (<=) lw71.jd.p216
cpe:2.3:o:lexmark:mx6500e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Mx6500e » Version: N/A
Lexmark » X548 Firmware
Versions up to, including, (<=) lhs60.vk.p682
cpe:2.3:o:lexmark:x548_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X548 » Version: N/A
Lexmark » Xs548 Firmware
Versions up to, including, (<=) lhs60.vk.p682
cpe:2.3:o:lexmark:xs548_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xs548 » Version: N/A
Lexmark » Xs748 Firmware
Versions up to, including, (<=) lhs60.ny.p682
cpe:2.3:o:lexmark:xs748_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xs748 » Version: N/A
Lexmark » X792 Firmware
Versions up to, including, (<=) lhs60.mr.p682
cpe:2.3:o:lexmark:x792_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X792 » Version: N/A
Lexmark » X925 Firmware
Versions up to, including, (<=) lhs60.hk.p682
cpe:2.3:o:lexmark:x925_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » X925 » Version: N/A
Lexmark » Xs925 Firmware
Versions up to, including, (<=) lhs60.hk.p682
cpe:2.3:o:lexmark:xs925_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xs925 » Version: N/A
Lexmark » 6500e Firmware
Versions up to, including, (<=) lhs60.jr.p809
cpe:2.3:o:lexmark:6500e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » 6500e » Version: N/A
Lexmark » Xm5163 Firmware
Versions up to, including, (<=) lw71.tu.p216
cpe:2.3:o:lexmark:xm5163_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xm5163 » Version: N/A
Lexmark » Xm5170 Firmware
Versions up to, including, (<=) lw71.tu.p216
cpe:2.3:o:lexmark:xm5170_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xm5170 » Version: N/A
Lexmark » Xm7155 Firmware
Versions up to, including, (<=) lw71.tu.p216
cpe:2.3:o:lexmark:xm7155_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xm7155 » Version: N/A
Lexmark » Xm7163 Firmware
Versions up to, including, (<=) lw71.tu.p216
cpe:2.3:o:lexmark:xm7163_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xm7163 » Version: N/A
Lexmark » Xm7170 Firmware
Versions up to, including, (<=) lw71.tu.p216
cpe:2.3:o:lexmark:xm7170_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xm7170 » Version: N/A
Lexmark » Xm7155x Firmware
Versions up to, including, (<=) lw71.tu.p216
cpe:2.3:o:lexmark:xm7155x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xm7155x » Version: N/A
Lexmark » Xm7163x Firmware
Versions up to, including, (<=) lw71.tu.p216
cpe:2.3:o:lexmark:xm7163x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xm7163x » Version: N/A
Lexmark » Xm7170x Firmware
Versions up to, including, (<=) lw71.tu.p216
cpe:2.3:o:lexmark:xm7170x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lexmark » Xm7170x » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2019-6489

EPSS FAQ

0.60%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 67 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2019-6489

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.4	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:P	10.0	4.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: Partial
5.3	MEDIUM	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N	3.9	1.4	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: Low Availability: None

References for CVE-2019-6489

http://support.lexmark.com/index?page=content&id=TE912

Lexmark United States Lexmark Security Advisory: Shortcut Integrity Vulnerability (CVE-2019-6489)
Vendor Advisory

Jump to

Vulnerability Details : CVE-2019-6489

Products affected by CVE-2019-6489

Exploit prediction scoring system (EPSS) score for CVE-2019-6489

CVSS scores for CVE-2019-6489

References for CVE-2019-6489