Vulnerabilites related to Lexmark International - CX, XC, CS, MS, MX, XM, et. al.
CVE-2024-11346 (GCVE-0-2024-11346)
Vulnerability from cvelistv5
Published
2025-02-13 18:54
Modified
2025-02-13 19:17
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')
Summary
: Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Lexmark International CX, XC, CS, et. Al. (Postscript interpreter modules) allows Resource Injection.This issue affects CX, XC, CS, et. Al.: from 001.001:0 through 081.231, from *.*.P001 through *.*.P233, from *.*.P001 through *.*.P759, from *.*.P001 through *.*.P836.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Lexmark International | CX, XC, CS, MS, MX, XM, et. al. |
Version: 0 < Version: CXTLS.240.200 < * Version: 0 < Version: MXTLS.240.200 < * Version: 0 < Version: CSTLS.240.200 < * Version: 0 < Version: MSNSN.240.200 < * Version: 0 < Version: MSTSN.240.200 < * Version: 0 < Version: MXTSN.240.200 < * Version: 0 < Version: CSNGV.240.200 < * Version: 0 < Version: CSTGV.240.200 < * Version: 0 < Version: CXTGV.240.200 < * Version: 0 < Version: CXTPC.240.200 < * Version: 0 < Version: CSTPC.240.200 < * Version: 0 < Version: MXTCT.240.200 < * Version: 0 < Version: MXTPM.240.200 < * Version: 0 < Version: CXTMM.240.200 < * Version: 0 < Version: CSTMM.240.200 < * Version: 0 < Version: CSTZJ.240.200 < * Version: 0 < Version: CSNZJ.240.200 < * Version: 0 < Version: CXTZJ.240.200 < * Version: 0 < Version: CXNZJ.240.200 < * Version: 0 < Version: MSNGM.240.200 < * Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-11346",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-02-13T19:16:38.233943Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-02-13T19:17:04.920Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"modules": [
"Postscript interpreter"
],
"product": "CX, XC, CS, MS, MX, XM, et. al.",
"vendor": "Lexmark International",
"versions": [
{
"changes": [
{
"at": "CXTLS.240.077 - CXTLS.240.199",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTLS.240.076",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTLS.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTLS.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTLS.240.077 - MXTLS.240.199",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTLS.240.076",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTLS.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTLS.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTLS.240.077 - CSTLS.240.199",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTLS.240.076",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTLS.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTLS.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNSN.240.043 - MSNSN.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNSN.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNSN.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSNSN.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTSN.240.043 - MSTSN.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTSN.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTSN.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSTSN.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTSN.240.043 - MXTSN.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTSN.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTSN.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTSN.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNGV.240.043 - CSNGV.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNGV.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNGV.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSNGV.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTGV.240.043 - CSTGV.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTGV.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTGV.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTGV.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTGV.240.043 - CXTGV.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTGV.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTGV.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTGV.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPC.240.043 - CXTPC.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPC.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPC.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTPC.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPC.240.043 - CSTPC.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPC.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPC.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTPC.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTCT.240.043 - MXTCT.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTCT.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTCT.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTCT.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTPM.240.043-MXTPM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTPM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTPM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MXTPM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMM.240.043-CXTMM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTMM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMM.240.043 - CSTMM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTMM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTZJ.240.043 - CSTZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSTZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNZJ.240.043 - CSNZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CSNZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTZJ.240.043 - CXTZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXTZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXNZJ.240.043 - CXNZJ.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXNZJ.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXNZJ.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "CXNZJ.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGM.240.043 - MSNGM.240.069",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNGM.240.042",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGM.240.201 and later",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "MSNGM.240.200",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLSG.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLSG.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLSG.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLSG.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLBD.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLBD.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLBD.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLBD.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBN.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBN.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBL.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBL.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBN.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBN.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBL.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBL.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPP.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPP.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPP.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPP.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTAT.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTAT.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTAT.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTAT.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMH.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMH.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMH.230.402 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMH.230.401",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TL2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TL2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TU.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TU.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SA.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SA.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.MG.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.MG.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.VY4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.VY4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.PRL.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.PRL.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.SB2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.SB2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VYL.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VYL.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VY2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VY2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.GM2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.GM2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": ": Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027) vulnerability in Lexmark International CX, XC, CS, et. Al. (Postscript interpreter modules) allows Resource Injection.\u003cp\u003eThis issue affects CX, XC, CS, et. Al.: from 001.001:0 through 081.231, from *.*.P001 through *.*.P233, from *.*.P001 through *.*.P759, from *.*.P001 through *.*.P836.\u003c/p\u003e"
}
],
"value": ": Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027) vulnerability in Lexmark International CX, XC, CS, et. Al. (Postscript interpreter modules) allows Resource Injection.This issue affects CX, XC, CS, et. Al.: from 001.001:0 through 081.231, from *.*.P001 through *.*.P233, from *.*.P001 through *.*.P759, from *.*.P001 through *.*.P836."
}
],
"impacts": [
{
"capecId": "CAPEC-240",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-240 Resource Injection"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-843",
"description": "CWE-843: Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-02-13T18:54:41.167Z",
"orgId": "7bc73191-a2b6-4c63-9918-753964601853",
"shortName": "Lexmark"
},
"references": [
{
"url": "https://www.lexmark.com/en_us/solutions/security/lexmark-security-advisories.html"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Access of Resource Using Incompatible Type in Postscript interpreter",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "7bc73191-a2b6-4c63-9918-753964601853",
"assignerShortName": "Lexmark",
"cveId": "CVE-2024-11346",
"datePublished": "2025-02-13T18:54:41.167Z",
"dateReserved": "2024-11-18T16:10:42.142Z",
"dateUpdated": "2025-02-13T19:17:04.920Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-11345 (GCVE-0-2024-11345)
Vulnerability from cvelistv5
Published
2025-02-13 18:46
Modified
2025-02-13 19:19
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-787 - Out-of-bounds Write
Summary
A heap-based memory vulnerability has been identified in the Postscript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Lexmark International | CX, XC, CS, MS, MX, XM, et. al. |
Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < Version: 0 < |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-11345",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-02-13T19:16:54.572367Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-02-13T19:19:43.200Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "CX, XC, CS, MS, MX, XM, et. al.",
"vendor": "Lexmark International",
"versions": [
{
"changes": [
{
"at": "CXTLS.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTLS.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTLS.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTLS.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNSN.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNSN.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTSN.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTSN.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTSN.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTSN.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNGV.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNGV.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTGV.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTGV.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTGV.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTGV.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPC.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPC.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPC.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPC.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTCT.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTCT.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTPM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTPM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLSG.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLSG.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLSG.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLSG.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSLBD.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSLBD.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXLBD.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXLBD.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNGM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTGM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXNGM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXNGM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGM.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTGM.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSNGW.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSNGW.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MSTGW.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MSTGW.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "MXTGW.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "MXTGW.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBN.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBN.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSLBL.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSLBL.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBN.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBN.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXLBL.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXLBL.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTZJ.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTZJ.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSNZJ.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSNZJ.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTZJ.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTZJ.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXNZJ.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXNZJ.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTPP.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTPP.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTPP.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTPP.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTAT.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTAT.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTAT.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTAT.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CSTMH.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CSTMH.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "CXTMH.230.342 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "CXTMH.230.341",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TL2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TL2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.PR4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.PR4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SB7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SB7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN2.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN2.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.DN7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.DN7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.TU.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.TU.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.SA.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.SA.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.MG.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.MG.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM7.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM7.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW90.GM4.P216 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW90.GM4.P215",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.PRL.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.PRL.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.SB2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.SB2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VYL.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VYL.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.VY2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.VY2.P257",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"changes": [
{
"at": "LW80.GM2.P258 and later",
"status": "unaffected"
}
],
"lessThanOrEqual": "LW80.GM2P257",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003eA heap-based memory vulnerability has been identified in the Postscript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code.\u003cbr\u003e\u003c/p\u003e"
}
],
"value": "A heap-based memory vulnerability has been identified in the Postscript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code."
}
],
"impacts": [
{
"capecId": "CAPEC-100",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-100 Overflow Buffers"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-787",
"description": "CWE-787 Out-of-bounds Write",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-02-13T18:46:33.859Z",
"orgId": "7bc73191-a2b6-4c63-9918-753964601853",
"shortName": "Lexmark"
},
"references": [
{
"url": "https://www.lexmark.com/en_us/solutions/security/lexmark-security-advisories.html"
}
],
"solutions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Lexmark recommends a firmware update if your device has affected firmware.\n\n\u003cbr\u003e"
}
],
"value": "Lexmark recommends a firmware update if your device has affected firmware."
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Heap-based memory vulnerability in the Postscript interpreter in various Lexmark devices",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "7bc73191-a2b6-4c63-9918-753964601853",
"assignerShortName": "Lexmark",
"cveId": "CVE-2024-11345",
"datePublished": "2025-02-13T18:46:33.859Z",
"dateReserved": "2024-11-18T16:10:40.070Z",
"dateUpdated": "2025-02-13T19:19:43.200Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}