Detections
Analytics

Lexmark Printers Exposure of Sensitive Information to an Unauthorized Actor (CVE-2011-3269)

high Tenable OT Security Plugin ID 503877

Synopsis

The remote OT asset is affected by a vulnerability.

Description

Lexmark X, W, T, E, C, 6500e, and 25xxN devices before 2011-11-15 allow attackers to obtain sensitive information via a hidden email address in a Scan To Email shortcut.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

Solution

Refer to the vendor advisory.

See Also

http://www.nessus.org/u?f1fc4c17

Plugin Details

Severity: High

ID: 503877

Version: 1.1

Type: remote

Family: Tenable.ot

Published: 11/5/2025

Updated: 11/5/2025

Supported Sensors: Tenable OT Security

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS Score Source: CVE-2011-3269

CVSS v3

Risk Factor: High

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Vulnerability Information

CPE: cpe:/o:lexmark:x736_firmware, cpe:/o:lexmark:x642_firmware, cpe:/o:lexmark:x782e_firmware, cpe:/o:lexmark:x850_firmware, cpe:/o:lexmark:x46x_firmware, cpe:/o:lexmark:x264_firmware, cpe:/o:lexmark:c546_firmware, cpe:/o:lexmark:c762_firmware, cpe:/o:lexmark:c522_firmware, cpe:/o:lexmark:x34x_firmware, cpe:/o:lexmark:x650_firmware, cpe:/o:lexmark:x644_firmware, cpe:/o:lexmark:c520_firmware, cpe:/o:lexmark:c736_firmware, cpe:/o:lexmark:c920_firmware, cpe:/o:lexmark:c534_firmware, cpe:/o:lexmark:c792e_firmware, cpe:/o:lexmark:x36x_firmware, cpe:/o:lexmark:c770_firmware, cpe:/o:lexmark:x422_firmware, cpe:/o:lexmark:x950_firmware, cpe:/o:lexmark:x544_firmware, cpe:/o:lexmark:c524_firmware, cpe:/o:lexmark:x738_firmware, cpe:/o:lexmark:x954_firmware, cpe:/o:lexmark:x925de_firmware, cpe:/o:lexmark:x543_firmware, cpe:/o:lexmark:c772_firmware, cpe:/o:lexmark:c782_firmware, cpe:/o:lexmark:x854_firmware, cpe:/o:lexmark:x864_firmware, cpe:/o:lexmark:x734_firmware, cpe:/o:lexmark:c734_firmware, cpe:/o:lexmark:c789_firmware, cpe:/o:lexmark:c925de_firmware, cpe:/o:lexmark:c510_firmware, cpe:/o:lexmark:c935dn_firmware, cpe:/o:lexmark:c950_firmware, cpe:/o:lexmark:x646_firmware, cpe:/o:lexmark:x862_firmware, cpe:/o:lexmark:x772e_firmware, cpe:/o:lexmark:x945e_firmware, cpe:/o:lexmark:x548de_firmware, cpe:/o:lexmark:x546_firmware, cpe:/o:lexmark:x952_firmware, cpe:/o:lexmark:c530_firmware, cpe:/o:lexmark:c540_firmware, cpe:/o:lexmark:x940e_firmware, cpe:/o:lexmark:x852_firmware, cpe:/o:lexmark:c760_firmware, cpe:/o:lexmark:c532_firmware, cpe:/o:lexmark:x792de_firmware, cpe:/o:lexmark:x860_firmware

Required KB Items: Tenable.ot/Lexmark

Exploit Ease: No known exploits are available

Patch Publication Date: 3/9/2020

Vulnerability Publication Date: 3/9/2020

Reference Information

CVE: CVE-2011-3269

CWE: 200