CVE-2023-50737

CWE-20Improper Input Validation3 documents3 sources
Severity
9.1CRITICAL
EPSS
0.1%
top 77.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Lexmark Various
Timeline
PublishedFeb 28

Description

The SE menu contains information used by Lexmark to diagnose device errors. A vulnerability in one of the SE menu routines can be leveraged by an attacker to execute arbitrary code.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:HExploitability: 2.3 | Impact: 6.0

Affected Packages1 packages

CVEListV5lexmark/variousvarious

🔴Vulnerability Details

2
GHSA
GHSA-jg84-v5xw-8m52: The SE menu contains information used by Lexmark to diagnose device errors2024-02-28
CVEList
An input validation vulnerability in the SE Menu allows an attacker to execute arbitrary code.2024-02-28
CVE-2023-50737 (CRITICAL CVSS 9.1) | The SE menu contains information us | cvebase.io