CVE-2011-4538

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2011-4538
Lexmark X, W, T, E, and C devices before 2012-02-09 allow attackers to obtain sensitive information by reading passwords within exported settings.

5.3 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References
Link Resource
http://contentdelivery.lexmark.com/webcontent/CVE-2011-4538.pdf Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:lexmark:x860_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x860:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:lexmark:x862_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x862:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:lexmark:x864_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x864:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:lexmark:x734_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x734:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:lexmark:x736_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x736:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:lexmark:x738_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x738:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:lexmark:x651_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x651:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:lexmark:x652_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x652:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:lexmark:x654_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x654:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:lexmark:x656_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x656:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:lexmark:x658_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x658:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:lexmark:x543_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x543:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:lexmark:x544_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x544:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:lexmark:x546_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x546:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:lexmark:x463_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x463:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:lexmark:x464_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x464:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:lexmark:x466_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x466:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:lexmark:x363_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x363:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:lexmark:x364_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x364:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:lexmark:w850_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:w850:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:lexmark:t650_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:t650:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:lexmark:t652_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:t652:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:lexmark:t654_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:t654:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:lexmark:e460_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e460:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:lexmark:e462_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e462:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:lexmark:e360_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e360:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:lexmark:e260_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e260:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND
cpe:2.3:o:lexmark:c734_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c734:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND
cpe:2.3:o:lexmark:c736_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c736:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND
cpe:2.3:o:lexmark:c546_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c546:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND
cpe:2.3:o:lexmark:c540_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c540:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND
cpe:2.3:o:lexmark:c543_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c543:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND
cpe:2.3:o:lexmark:c544_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c544:-:*:*:*:*:*:*:*
History

No history.

Information

Published : 2020-03-09 19:15

Updated : 2023-12-10 13:13

NVD link : CVE-2011-4538

Mitre link : CVE-2011-4538

CVE.ORG link : CVE-2011-4538

JSON object : View

Products Affected

lexmark

  • e360_firmware
  • x738_firmware
  • x656
  • c540
  • x658_firmware
  • x364
  • w850
  • e462
  • x363_firmware
  • x463_firmware
  • x544
  • x860
  • t654
  • e360
  • x736
  • x734
  • x862_firmware
  • e460_firmware
  • t652
  • c546
  • x864_firmware
  • x651_firmware
  • t650
  • x652_firmware
  • x544_firmware
  • c546_firmware
  • x736_firmware
  • x738
  • x546
  • c543_firmware
  • e462_firmware
  • x654
  • x364_firmware
  • x543_firmware
  • e260
  • x363
  • c540_firmware
  • c544
  • t654_firmware
  • x651
  • c734
  • x734_firmware
  • x543
  • t652_firmware
  • e260_firmware
  • x862
  • x652
  • c736_firmware
  • x656_firmware
  • x860_firmware
  • x654_firmware
  • e460
  • t650_firmware
  • x658
  • x464
  • x864
  • c736
  • x463
  • w850_firmware
  • x464_firmware
  • c734_firmware
  • x466_firmware
  • c543
  • c544_firmware
  • x466
  • x546_firmware
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor