Detections
Analytics

Lexmark Printers Improper Input Validation (CVE-2023-26067)

high Tenable OT Security Plugin ID 503908

Synopsis

The remote OT asset is affected by a vulnerability.

Description

A trusted internal component of Lexmark devices has an input validation vulnerability. This vulnerability can be leveraged by an attacker who has already compromised the device to escalate privileges. NOTE: This vulnerability cannot be used to compromise a device, it can only be used on a device that has already been compromised by another means.

Solution

Refer to the vendor advisory.

See Also

http://www.nessus.org/u?81364575

Plugin Details

Severity: High

ID: 503908

Version: 1.2

Type: remote

Family: Tenable.ot

Published: 11/7/2025

Updated: 11/7/2025

Supported Sensors: Tenable OT Security

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v3

Risk Factor: High

Base Score: 8

Vector: CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/o:lexmark:cs439_firmware, cpe:/o:lexmark:mb2338_firmware, cpe:/o:lexmark:cx431_firmware, cpe:/o:lexmark:mx432_firmware, cpe:/o:lexmark:xm3142_firmware, cpe:/o:lexmark:mb2546_firmware, cpe:/o:lexmark:mb2770_firmware, cpe:/o:lexmark:mx522_firmware, cpe:/o:lexmark:mc2535_firmware, cpe:/o:lexmark:cs927_firmware, cpe:/o:lexmark:c2326_firmware, cpe:/o:lexmark:xc9265_firmware, cpe:/o:lexmark:xc8155_firmware, cpe:/o:lexmark:ms439_firmware, cpe:/o:lexmark:cx860_firmware, cpe:/o:lexmark:xc4150_firmware, cpe:/o:lexmark:b2546_firmware, cpe:/o:lexmark:c2240_firmware, cpe:/o:lexmark:mx521_firmware, cpe:/o:lexmark:c4352_firmware, cpe:/o:lexmark:ms821_firmware, cpe:/o:lexmark:xm5365_firmware, cpe:/o:lexmark:cx820_firmware, cpe:/o:lexmark:b2338_firmware, cpe:/o:lexmark:ms421_firmware, cpe:/o:lexmark:xm1246_firmware, cpe:/o:lexmark:mx931_firmware, cpe:/o:lexmark:cx331_firmware, cpe:/o:lexmark:mb2236_firmware, cpe:/o:lexmark:ms431_firmware, cpe:/o:lexmark:mx721_firmware, cpe:/o:lexmark:b2236_firmware, cpe:/o:lexmark:c9235_firmware, cpe:/o:lexmark:b3442_firmware, cpe:/o:lexmark:ms725_firmware, cpe:/o:lexmark:cx921_firmware, cpe:/o:lexmark:xc4240_firmware, cpe:/o:lexmark:cx924_firmware, cpe:/o:lexmark:xc9225_firmware, cpe:/o:lexmark:xc9455_firmware, cpe:/o:lexmark:xc9465_firmware, cpe:/o:lexmark:cx827_firmware, cpe:/o:lexmark:xc9325_firmware, cpe:/o:lexmark:mb3442_firmware, cpe:/o:lexmark:xc2235_firmware, cpe:/o:lexmark:xc9255_firmware, cpe:/o:lexmark:cx930_firmware, cpe:/o:lexmark:xm5370_firmware, cpe:/o:lexmark:m5255_firmware, cpe:/o:lexmark:cs431_firmware, cpe:/o:lexmark:cx622_firmware, cpe:/o:lexmark:cx421_firmware, cpe:/o:lexmark:cx730_firmware, cpe:/o:lexmark:ms331_firmware, cpe:/o:lexmark:cx942_firmware, cpe:/o:lexmark:cs921_firmware, cpe:/o:lexmark:ms826_firmware, cpe:/o:lexmark:cx923_firmware, cpe:/o:lexmark:xc8160_firmware, cpe:/o:lexmark:mc2640_firmware, cpe:/o:lexmark:cx522_firmware, cpe:/o:lexmark:xc9235_firmware, cpe:/o:lexmark:cs730_firmware, cpe:/o:lexmark:mx421_firmware, cpe:/o:lexmark:cs622_firmware, cpe:/o:lexmark:mc3326_firmware, cpe:/o:lexmark:xc6153_firmware, cpe:/o:lexmark:cs820_firmware, cpe:/o:lexmark:cs421_firmware, cpe:/o:lexmark:cs923_firmware, cpe:/o:lexmark:c4342_firmware, cpe:/o:lexmark:xc9445_firmware, cpe:/o:lexmark:cx725_firmware, cpe:/o:lexmark:b3340_firmware, cpe:/o:lexmark:ms825_firmware, cpe:/o:lexmark:cs727_firmware, cpe:/o:lexmark:ms321_firmware, cpe:/o:lexmark:cs735_firmware, cpe:/o:lexmark:mx331_firmware, cpe:/o:lexmark:ms621_firmware, cpe:/o:lexmark:ms823_firmware, cpe:/o:lexmark:xc2326_firmware, cpe:/o:lexmark:xc9335_firmware, cpe:/o:lexmark:cs521_firmware, cpe:/o:lexmark:mb2650_firmware, cpe:/o:lexmark:cx920_firmware, cpe:/o:lexmark:c3326_firmware, cpe:/o:lexmark:c3426_firmware, cpe:/o:lexmark:mx622_firmware, cpe:/o:lexmark:xc9245_firmware, cpe:/o:lexmark:m5270_firmware, cpe:/o:lexmark:xc4352_firmware, cpe:/o:lexmark:mc3426_firmware, cpe:/o:lexmark:xc8163_firmware, cpe:/o:lexmark:b2865_firmware, cpe:/o:lexmark:cx922_firmware, cpe:/o:lexmark:cx931_firmware, cpe:/o:lexmark:cx943_firmware, cpe:/o:lexmark:mx321_firmware, cpe:/o:lexmark:xm1242_firmware, cpe:/o:lexmark:c6160_firmware, cpe:/o:lexmark:ms622_firmware, cpe:/o:lexmark:xc6152_firmware, cpe:/o:lexmark:cx944_firmware, cpe:/o:lexmark:cs943_firmware, cpe:/o:lexmark:c2535_firmware, cpe:/o:lexmark:cs827_firmware, cpe:/o:lexmark:cs720_firmware, cpe:/o:lexmark:xc4153_firmware, cpe:/o:lexmark:cs331_firmware, cpe:/o:lexmark:m1242_firmware, cpe:/o:lexmark:c2425_firmware, cpe:/o:lexmark:mx826_firmware, cpe:/o:lexmark:cx735_firmware, cpe:/o:lexmark:xc4143_firmware, cpe:/o:lexmark:ms521_firmware, cpe:/o:lexmark:c3224_firmware, cpe:/o:lexmark:mx722_firmware, cpe:/o:lexmark:mc2325_firmware, cpe:/o:lexmark:xc4140_firmware, cpe:/o:lexmark:mc2425_firmware, cpe:/o:lexmark:xm3250_firmware, cpe:/o:lexmark:cx825_firmware, cpe:/o:lexmark:mx725_firmware, cpe:/o:lexmark:cs728_firmware, cpe:/o:lexmark:m3250_firmware, cpe:/o:lexmark:c4150_firmware, cpe:/o:lexmark:mb2442_firmware, cpe:/o:lexmark:xm1342_firmware, cpe:/o:lexmark:mx431_firmware, cpe:/o:lexmark:cx727_firmware, cpe:/o:lexmark:cx625_firmware, cpe:/o:lexmark:m1246_firmware, cpe:/o:lexmark:b2650_firmware, cpe:/o:lexmark:mx822_firmware, cpe:/o:lexmark:c2325_firmware, cpe:/o:lexmark:mc3224_firmware, cpe:/o:lexmark:cs725_firmware, cpe:/o:lexmark:b2442_firmware, cpe:/o:lexmark:xm7370_firmware, cpe:/o:lexmark:xm7355_firmware, cpe:/o:lexmark:ms822_firmware, cpe:/o:lexmark:m1342_firmware, cpe:/o:lexmark:xc4342_firmware

Required KB Items: Tenable.ot/Lexmark

Patch Publication Date: 2/28/2023

Vulnerability Publication Date: 2/28/2023

Reference Information

CVE: CVE-2023-26067

CWE: 20, 269