Vulnerabilities (CVE)

Filtered by vendor Lexmark Subscribe
Filtered by product Cx725h Firmware
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-17944 1 Lexmark 16 Cx725h, Cx725h Firmware, Cx820 and 13 more 2024-11-21 4.0 MEDIUM 4.9 MEDIUM
On certain Lexmark devices that communicate with an LDAP or SMTP server, a malicious administrator can discover LDAP or SMTP credentials by changing that server's hostname to one that they control, and then capturing the credentials that are sent there. This occurs because stored credentials are not automatically deleted upon that type of hostname change.