PT-2023-8590 · Lexmark · Lexmark Devices

Published

2023-11-09

Updated

2024-02-29

CVE-2023-50736

CVSS v3.1

9.0

Critical

Vector

AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Lexmark devices (affected versions not specified)

Description A memory corruption vulnerability has been identified in the PostScript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code. This issue is related to insufficient input validation in the PostScript File Handler component of the printer's firmware.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-131

Related Identifiers

BDU:2024-01240

CVE-2023-50736

ZDI-24-083

Affected Products

Lexmark Devices

PT-2023-8590 · Lexmark · Lexmark Devices

CVE-2023-50736

Weakness Enumeration

Related Identifiers

Affected Products

References · 10