CVE-2018-17944

Name of the Vulnerable Software and Affected Versions Lexmark devices (affected versions not specified)

Description The issue allows a malicious administrator to obtain LDAP or SMTP credentials by modifying the hostname of the server to one they control and capturing the sent credentials. This happens because stored credentials are not automatically deleted when the hostname is changed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.