CVE-2023-50733

CWE-20 — Improper Input Validation CWE-918 — Server-Side Request Forgery (SSRF)3 documents3 sources

Severity

8.6HIGH

EPSS

0.2%

top 60.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Lexmark Various

Timeline

PublishedJan 21

Latest updateJan 22

Description

A Server-Side Request Forgery (SSRF) vulnerability has been identified in the Web Services feature of newer Lexmark devices.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:NExploitability: 3.9 | Impact: 4.0

Affected Packages1 packages

▶CVEListV5lexmark/various230.211

🔴Vulnerability Details

GHSA

GHSA-pvxw-p6wf-89hg: A Server-Side Request Forgery (SSRF) vulnerability has been identified in the Web Services feature of newer Lexmark devices↗2025-01-22

▶

CVEList

A Server-Side Request Forgery (SSRF) vulnerability exists in newer Lexmark devices.↗2025-01-21

▶