CVE-2020-10093

A cross-site scripting (XSS) vulnerability in Lexmark Pro910 series inkjet and other discontinued products.

CVSS v3 5.4 MEDIUM
CVSS v2.0 3.5 LOW

5.4^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.3 / Impact : 2.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

3.5^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:M/Au:S/C:N/I:P/A:N

Exploitability : 6.8 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://support.lexmark.com/index?page=content&id=TE936	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:lexmark:cs31x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:cs31x:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:lexmark:cs41x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:cs41x:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:lexmark:cs51x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:cs51x:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:lexmark:cx310_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:cx310:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:lexmark:cx410_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:cx410:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:lexmark:xc2130_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xc2130:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:lexmark:cx510_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:cx510:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:lexmark:xc2132_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xc2132:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:lexmark:ms310_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms310:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:lexmark:ms312_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms312:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:lexmark:ms317_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms317:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:lexmark:ms410_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms410:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:lexmark:m1140_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:m1140:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:lexmark:ms315_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms315:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:lexmark:ms415_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms415:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:lexmark:ms417_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms417:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:lexmark:ms51x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms51x:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:lexmark:ms610dn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms610dn:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:lexmark:ms617_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms617:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:lexmark:m1145_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:m1145:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:lexmark:m3150dn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:m3150dn:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:lexmark:ms610de_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms610de:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:lexmark:m3150_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:m3150:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:lexmark:ms71x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms71x:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:lexmark:m5163dn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:m5163dn:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:lexmark:ms810_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms810:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:lexmark:ms811_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms811:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:lexmark:ms812_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms812:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:lexmark:ms817_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms817:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:lexmark:ms818_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms818:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:lexmark:ms810de_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms810de:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:lexmark:m5155_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:m5155:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:lexmark:m5163_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:m5163:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:lexmark:ms812de_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms812de:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND

cpe:2.3:o:lexmark:m5170_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:m5170:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND

cpe:2.3:o:lexmark:ms91x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:ms91x:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND

cpe:2.3:o:lexmark:mx31x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx31x:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND

cpe:2.3:o:lexmark:xm1135_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm1135:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND

cpe:2.3:o:lexmark:mx410_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx410:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND

cpe:2.3:o:lexmark:mx510_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx510:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND

cpe:2.3:o:lexmark:mx511_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx511:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND

cpe:2.3:o:lexmark:xm1140_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm1140:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND

cpe:2.3:o:lexmark:xm1145_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm1145:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND

cpe:2.3:o:lexmark:mx610_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx610:-:*:*:*:*:*:*:*

Configuration 45 (hide)

AND

cpe:2.3:o:lexmark:mx611_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx611:-:*:*:*:*:*:*:*

Configuration 46 (hide)

AND

cpe:2.3:o:lexmark:xm3150_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm3150:-:*:*:*:*:*:*:*

Configuration 47 (hide)

AND

cpe:2.3:o:lexmark:mx71x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx71x:-:*:*:*:*:*:*:*

Configuration 48 (hide)

AND

cpe:2.3:o:lexmark:mx81x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx81x:-:*:*:*:*:*:*:*

Configuration 49 (hide)

AND

cpe:2.3:o:lexmark:xm51xx_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm51xx:-:*:*:*:*:*:*:*

Configuration 50 (hide)

AND

cpe:2.3:o:lexmark:xm71xx_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm71xx:-:*:*:*:*:*:*:*

Configuration 51 (hide)

AND

cpe:2.3:o:lexmark:mx91x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx91x:-:*:*:*:*:*:*:*

Configuration 52 (hide)

AND

cpe:2.3:o:lexmark:xm91x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xm91x:-:*:*:*:*:*:*:*

Configuration 53 (hide)

AND

cpe:2.3:o:lexmark:mx6500e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:mx6500e:-:*:*:*:*:*:*:*

Configuration 54 (hide)

AND

cpe:2.3:o:lexmark:c746_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:c746:-:*:*:*:*:*:*:*

Configuration 55 (hide)

AND

cpe:2.3:o:lexmark:c748_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:c748:-:*:*:*:*:*:*:*

Configuration 56 (hide)

AND

cpe:2.3:o:lexmark:cs748_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:cs748:-:*:*:*:*:*:*:*

Configuration 57 (hide)

AND

cpe:2.3:o:lexmark:c792_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:c792:-:*:*:*:*:*:*:*

Configuration 58 (hide)

AND

cpe:2.3:o:lexmark:cs796_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:cs796:-:*:*:*:*:*:*:*

Configuration 59 (hide)

AND

cpe:2.3:o:lexmark:c925_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:c925:-:*:*:*:*:*:*:*

Configuration 60 (hide)

AND

cpe:2.3:o:lexmark:c950_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:c950:-:*:*:*:*:*:*:*

Configuration 61 (hide)

AND

cpe:2.3:o:lexmark:x548_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x548:-:*:*:*:*:*:*:*

Configuration 62 (hide)

AND

cpe:2.3:o:lexmark:xs548_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xs548:-:*:*:*:*:*:*:*

Configuration 63 (hide)

AND

cpe:2.3:o:lexmark:x74x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x74x:-:*:*:*:*:*:*:*

Configuration 64 (hide)

AND

cpe:2.3:o:lexmark:xs748_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xs748:-:*:*:*:*:*:*:*

Configuration 65 (hide)

AND

cpe:2.3:o:lexmark:x792_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x792:-:*:*:*:*:*:*:*

Configuration 66 (hide)

AND

cpe:2.3:o:lexmark:xs79x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xs79x:-:*:*:*:*:*:*:*

Configuration 67 (hide)

AND

cpe:2.3:o:lexmark:x925_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x925:-:*:*:*:*:*:*:*

Configuration 68 (hide)

AND

cpe:2.3:o:lexmark:xs925_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xs925:-:*:*:*:*:*:*:*

Configuration 69 (hide)

AND

cpe:2.3:o:lexmark:x95x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x95x:-:*:*:*:*:*:*:*

Configuration 70 (hide)

AND

cpe:2.3:o:lexmark:xs95x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:xs95x:-:*:*:*:*:*:*:*

Configuration 71 (hide)

AND

cpe:2.3:o:lexmark:6500e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:6500e:-:*:*:*:*:*:*:*

Configuration 72 (hide)

AND

cpe:2.3:o:lexmark:c734_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:c734:-:*:*:*:*:*:*:*

Configuration 73 (hide)

AND

cpe:2.3:o:lexmark:c736_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:c736:-:*:*:*:*:*:*:*

Configuration 74 (hide)

AND

cpe:2.3:o:lexmark:e46x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:e46x:-:*:*:*:*:*:*:*

Configuration 75 (hide)

AND

cpe:2.3:o:lexmark:t65x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:t65x:-:*:*:*:*:*:*:*

Configuration 76 (hide)

AND

cpe:2.3:o:lexmark:x46x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x46x:-:*:*:*:*:*:*:*

Configuration 77 (hide)

AND

cpe:2.3:o:lexmark:x65x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x65x:-:*:*:*:*:*:*:*

Configuration 78 (hide)

AND

cpe:2.3:o:lexmark:x73x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x73x:-:*:*:*:*:*:*:*

Configuration 79 (hide)

AND

cpe:2.3:o:lexmark:w850_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:w850:-:*:*:*:*:*:*:*

Configuration 80 (hide)

AND

cpe:2.3:o:lexmark:x86x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:lexmark:x86x:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2020-04-28 14:15

Updated : 2023-12-10 13:27

NVD link : CVE-2020-10093

Mitre link : CVE-2020-10093

CVE.ORG link : CVE-2020-10093

JSON object : View

Products Affected

lexmark

w850
ms810
xs548
m3150
c925_firmware
ms417_firmware
ms812de
c792
mx71x_firmware
mx91x
ms811
cs31x
ms71x
xs748
ms410
xm1145
mx510_firmware
mx611
ms71x_firmware
xs95x
mx610_firmware
cs51x_firmware
c746
x73x
m1145
xm91x
xm71xx_firmware
x86x
x74x_firmware
m1140_firmware
xm91x_firmware
c746_firmware
ms315_firmware
mx81x
ms818_firmware
ms310
mx511
c792_firmware
ms312_firmware
mx81x_firmware
ms617
cs796
x792_firmware
cx410_firmware
xm1135
xc2130_firmware
xc2132_firmware
x65x
ms410_firmware
cx410
mx511_firmware
mx6500e
xm1145_firmware
ms415
ms91x
cs796_firmware
cs41x_firmware
c736
ms415_firmware
ms818
xc2132
mx31x_firmware
xs748_firmware
ms817
m5163dn_firmware
ms817_firmware
ms91x_firmware
cs41x
x74x
c925
x65x_firmware
e46x
m5155_firmware
mx510
cs51x
xs79x
c950
x46x
m3150_firmware
ms317_firmware
c748
m5163_firmware
c950_firmware
ms812_firmware
t65x_firmware
mx410_firmware
cx310_firmware
xc2130
cs748_firmware
mx610
x548
e46x_firmware
c748_firmware
ms810de
m1145_firmware
ms315
mx71x
x95x
ms610de_firmware
mx6500e_firmware
x792
m3150dn_firmware
cs748
x925_firmware
xm3150_firmware
ms617_firmware
m5163dn
w850_firmware
ms811_firmware
m5170
cx310
ms317
ms417
xm1140_firmware
6500e
ms610de
c736_firmware
xm3150
ms812
x548_firmware
xs925
m5163
x46x_firmware
xs548_firmware
xs79x_firmware
mx91x_firmware
xm51xx_firmware
ms610dn_firmware
cx510
x925
x86x_firmware
ms312
m3150dn
mx410
cs31x_firmware
xm71xx
x73x_firmware
c734_firmware
ms310_firmware
m5155
6500e_firmware
cx510_firmware
xm1140
ms812de_firmware
ms810de_firmware
mx611_firmware
ms51x
mx31x
x95x_firmware
t65x
m5170_firmware
xs925_firmware
m1140
c734
ms810_firmware
xm1135_firmware
xs95x_firmware
ms51x_firmware
xm51xx
ms610dn

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

5.4 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

3.5 /10

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

JSON object

Attach tags to CVE-2020-10093

5.4^/10

3.5^/10

Attach tags to `CVE-2020-10093`