// For flags

CVE-2018-18894

 

Severity Score

7.5
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Certain older Lexmark devices (C, M, X, and 6500e before 2018-12-18) contain a directory traversal vulnerability in the embedded web server.

Ciertos dispositivos Lexmark más antiguos (C, M, X, y 6500e antes del 18-12-2018), contienen una vulnerabilidad de salto de directorio en el servidor web incorporado.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2018-11-01 CVE Reserved
  • 2020-03-10 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-05 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Lexmark
Search vendor "Lexmark"
6500e Firmware
Search vendor "Lexmark" for product "6500e Firmware"
< lhs60.jr.p683
Search vendor "Lexmark" for product "6500e Firmware" and version " < lhs60.jr.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
6500e
Search vendor "Lexmark" for product "6500e"
--
Safe
Lexmark
Search vendor "Lexmark"
C748 Firmware
Search vendor "Lexmark" for product "C748 Firmware"
< lhs60.cm4.p683
Search vendor "Lexmark" for product "C748 Firmware" and version " < lhs60.cm4.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
C748
Search vendor "Lexmark" for product "C748"
--
Safe
Lexmark
Search vendor "Lexmark"
C79x Firmware
Search vendor "Lexmark" for product "C79x Firmware"
< lhs60.hc.p683
Search vendor "Lexmark" for product "C79x Firmware" and version " < lhs60.hc.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
C79x
Search vendor "Lexmark" for product "C79x"
--
Safe
Lexmark
Search vendor "Lexmark"
C925 Firmware
Search vendor "Lexmark" for product "C925 Firmware"
< lhs60.hv.p683
Search vendor "Lexmark" for product "C925 Firmware" and version " < lhs60.hv.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
C925
Search vendor "Lexmark" for product "C925"
--
Safe
Lexmark
Search vendor "Lexmark"
C95x Firmware
Search vendor "Lexmark" for product "C95x Firmware"
< lhs60.tp.p683
Search vendor "Lexmark" for product "C95x Firmware" and version " < lhs60.tp.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
C95x
Search vendor "Lexmark" for product "C95x"
--
Safe
Lexmark
Search vendor "Lexmark"
Cs41x Firmware
Search vendor "Lexmark" for product "Cs41x Firmware"
< lw71.vy2.p216
Search vendor "Lexmark" for product "Cs41x Firmware" and version " < lw71.vy2.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Cs41x
Search vendor "Lexmark" for product "Cs41x"
--
Safe
Lexmark
Search vendor "Lexmark"
Cs51x Firmware
Search vendor "Lexmark" for product "Cs51x Firmware"
< lw71.vy4.p216
Search vendor "Lexmark" for product "Cs51x Firmware" and version " < lw71.vy4.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Cs51x
Search vendor "Lexmark" for product "Cs51x"
--
Safe
Lexmark
Search vendor "Lexmark"
Cs748 Firmware
Search vendor "Lexmark" for product "Cs748 Firmware"
<= lhs60.cm4.p683
Search vendor "Lexmark" for product "Cs748 Firmware" and version " <= lhs60.cm4.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
Cs748
Search vendor "Lexmark" for product "Cs748"
--
Safe
Lexmark
Search vendor "Lexmark"
Cs796 Firmware
Search vendor "Lexmark" for product "Cs796 Firmware"
< lhs60.hc.p683
Search vendor "Lexmark" for product "Cs796 Firmware" and version " < lhs60.hc.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
Cs796
Search vendor "Lexmark" for product "Cs796"
--
Safe
Lexmark
Search vendor "Lexmark"
Cx410 Firmware
Search vendor "Lexmark" for product "Cx410 Firmware"
< lw71.gm4.p216
Search vendor "Lexmark" for product "Cx410 Firmware" and version " < lw71.gm4.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Cx410
Search vendor "Lexmark" for product "Cx410"
--
Safe
Lexmark
Search vendor "Lexmark"
Cx510 Firmware
Search vendor "Lexmark" for product "Cx510 Firmware"
< lw71.gm7.p216
Search vendor "Lexmark" for product "Cx510 Firmware" and version " < lw71.gm7.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Cx510
Search vendor "Lexmark" for product "Cx510"
--
Safe
Lexmark
Search vendor "Lexmark"
M3150 Firmware
Search vendor "Lexmark" for product "M3150 Firmware"
< lw71.pr4.p216
Search vendor "Lexmark" for product "M3150 Firmware" and version " < lw71.pr4.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
M3150
Search vendor "Lexmark" for product "M3150"
--
Safe
Lexmark
Search vendor "Lexmark"
M5155 Firmware
Search vendor "Lexmark" for product "M5155 Firmware"
< lw71.dn4.p216
Search vendor "Lexmark" for product "M5155 Firmware" and version " < lw71.dn4.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
M5155
Search vendor "Lexmark" for product "M5155"
--
Safe
Lexmark
Search vendor "Lexmark"
M5163 Firmware
Search vendor "Lexmark" for product "M5163 Firmware"
< lw71.dn4.p216
Search vendor "Lexmark" for product "M5163 Firmware" and version " < lw71.dn4.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
M5163
Search vendor "Lexmark" for product "M5163"
--
Safe
Lexmark
Search vendor "Lexmark"
M5170 Firmware
Search vendor "Lexmark" for product "M5170 Firmware"
< lw71.dn7.p216
Search vendor "Lexmark" for product "M5170 Firmware" and version " < lw71.dn7.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
M5170
Search vendor "Lexmark" for product "M5170"
--
Safe
Lexmark
Search vendor "Lexmark"
Ms610de Firmware
Search vendor "Lexmark" for product "Ms610de Firmware"
< lw71.pr4.p216
Search vendor "Lexmark" for product "Ms610de Firmware" and version " < lw71.pr4.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Ms610de
Search vendor "Lexmark" for product "Ms610de"
--
Safe
Lexmark
Search vendor "Lexmark"
Ms610dte Firmware
Search vendor "Lexmark" for product "Ms610dte Firmware"
< lw71.pr4.p216
Search vendor "Lexmark" for product "Ms610dte Firmware" and version " < lw71.pr4.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Ms610dte
Search vendor "Lexmark" for product "Ms610dte"
--
Safe
Lexmark
Search vendor "Lexmark"
Ms810de Firmware
Search vendor "Lexmark" for product "Ms810de Firmware"
< lw71.dn4.p216
Search vendor "Lexmark" for product "Ms810de Firmware" and version " < lw71.dn4.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Ms810de
Search vendor "Lexmark" for product "Ms810de"
--
Safe
Lexmark
Search vendor "Lexmark"
Ms812de Firmware
Search vendor "Lexmark" for product "Ms812de Firmware"
< lw71.dn7.p216
Search vendor "Lexmark" for product "Ms812de Firmware" and version " < lw71.dn7.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Ms812de
Search vendor "Lexmark" for product "Ms812de"
--
Safe
Lexmark
Search vendor "Lexmark"
Ms91x Firmware
Search vendor "Lexmark" for product "Ms91x Firmware"
< lw71.sa.p216
Search vendor "Lexmark" for product "Ms91x Firmware" and version " < lw71.sa.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Ms91x
Search vendor "Lexmark" for product "Ms91x"
--
Safe
Lexmark
Search vendor "Lexmark"
Mx410 Firmware
Search vendor "Lexmark" for product "Mx410 Firmware"
< lw71.sb4.p216
Search vendor "Lexmark" for product "Mx410 Firmware" and version " < lw71.sb4.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Mx410
Search vendor "Lexmark" for product "Mx410"
--
Safe
Lexmark
Search vendor "Lexmark"
Mx510 Firmware
Search vendor "Lexmark" for product "Mx510 Firmware"
< lw71.sb4.p216
Search vendor "Lexmark" for product "Mx510 Firmware" and version " < lw71.sb4.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Mx510
Search vendor "Lexmark" for product "Mx510"
--
Safe
Lexmark
Search vendor "Lexmark"
Mx511 Firmware
Search vendor "Lexmark" for product "Mx511 Firmware"
< lw71.sb4.p216
Search vendor "Lexmark" for product "Mx511 Firmware" and version " < lw71.sb4.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Mx511
Search vendor "Lexmark" for product "Mx511"
--
Safe
Lexmark
Search vendor "Lexmark"
Mx610 Firmware
Search vendor "Lexmark" for product "Mx610 Firmware"
< lw71.sb7.p216
Search vendor "Lexmark" for product "Mx610 Firmware" and version " < lw71.sb7.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Mx610
Search vendor "Lexmark" for product "Mx610"
--
Safe
Lexmark
Search vendor "Lexmark"
Mx611 Firmware
Search vendor "Lexmark" for product "Mx611 Firmware"
< lw71.sb7.p216
Search vendor "Lexmark" for product "Mx611 Firmware" and version " < lw71.sb7.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Mx611
Search vendor "Lexmark" for product "Mx611"
--
Safe
Lexmark
Search vendor "Lexmark"
Mx6500e Firmware
Search vendor "Lexmark" for product "Mx6500e Firmware"
<= lw71.jd.p216
Search vendor "Lexmark" for product "Mx6500e Firmware" and version " <= lw71.jd.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Mx6500e
Search vendor "Lexmark" for product "Mx6500e"
--
Safe
Lexmark
Search vendor "Lexmark"
Mx71x Firmware
Search vendor "Lexmark" for product "Mx71x Firmware"
< lw71.tu.p216
Search vendor "Lexmark" for product "Mx71x Firmware" and version " < lw71.tu.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Mx71x
Search vendor "Lexmark" for product "Mx71x"
--
Safe
Lexmark
Search vendor "Lexmark"
Mx81x Firmware
Search vendor "Lexmark" for product "Mx81x Firmware"
< lw71.tu.p216
Search vendor "Lexmark" for product "Mx81x Firmware" and version " < lw71.tu.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Mx81x
Search vendor "Lexmark" for product "Mx81x"
--
Safe
Lexmark
Search vendor "Lexmark"
Mx91x Firmware
Search vendor "Lexmark" for product "Mx91x Firmware"
< lw71.mg.p216
Search vendor "Lexmark" for product "Mx91x Firmware" and version " < lw71.mg.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Mx91x
Search vendor "Lexmark" for product "Mx91x"
--
Safe
Lexmark
Search vendor "Lexmark"
Sm91x Firmware
Search vendor "Lexmark" for product "Sm91x Firmware"
< lw71.mg.p216
Search vendor "Lexmark" for product "Sm91x Firmware" and version " < lw71.mg.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Sm91x
Search vendor "Lexmark" for product "Sm91x"
--
Safe
Lexmark
Search vendor "Lexmark"
X46x Firmware
Search vendor "Lexmark" for product "X46x Firmware"
< lr.bs.p810
Search vendor "Lexmark" for product "X46x Firmware" and version " < lr.bs.p810"
-
Affected
in Lexmark
Search vendor "Lexmark"
X46x
Search vendor "Lexmark" for product "X46x"
--
Safe
Lexmark
Search vendor "Lexmark"
X548 Firmware
Search vendor "Lexmark" for product "X548 Firmware"
< lhs60.vk.p683
Search vendor "Lexmark" for product "X548 Firmware" and version " < lhs60.vk.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
X548
Search vendor "Lexmark" for product "X548"
--
Safe
Lexmark
Search vendor "Lexmark"
X65x Firmware
Search vendor "Lexmark" for product "X65x Firmware"
< lr.mn.p810
Search vendor "Lexmark" for product "X65x Firmware" and version " < lr.mn.p810"
-
Affected
in Lexmark
Search vendor "Lexmark"
X65x
Search vendor "Lexmark" for product "X65x"
--
Safe
Lexmark
Search vendor "Lexmark"
X73x Firmware
Search vendor "Lexmark" for product "X73x Firmware"
< lr.fl.p810
Search vendor "Lexmark" for product "X73x Firmware" and version " < lr.fl.p810"
-
Affected
in Lexmark
Search vendor "Lexmark"
X73x
Search vendor "Lexmark" for product "X73x"
--
Safe
Lexmark
Search vendor "Lexmark"
X74x Firmware
Search vendor "Lexmark" for product "X74x Firmware"
< lhs60.ny.p683
Search vendor "Lexmark" for product "X74x Firmware" and version " < lhs60.ny.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
X74x
Search vendor "Lexmark" for product "X74x"
--
Safe
Lexmark
Search vendor "Lexmark"
X792 Firmware
Search vendor "Lexmark" for product "X792 Firmware"
< lhs60.mr.p683
Search vendor "Lexmark" for product "X792 Firmware" and version " < lhs60.mr.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
X792
Search vendor "Lexmark" for product "X792"
--
Safe
Lexmark
Search vendor "Lexmark"
X86x Firmware
Search vendor "Lexmark" for product "X86x Firmware"
< lr.sp.p810
Search vendor "Lexmark" for product "X86x Firmware" and version " < lr.sp.p810"
-
Affected
in Lexmark
Search vendor "Lexmark"
X86x
Search vendor "Lexmark" for product "X86x"
--
Safe
Lexmark
Search vendor "Lexmark"
X925 Firmware
Search vendor "Lexmark" for product "X925 Firmware"
< lhs60.hk.p683
Search vendor "Lexmark" for product "X925 Firmware" and version " < lhs60.hk.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
X925
Search vendor "Lexmark" for product "X925"
--
Safe
Lexmark
Search vendor "Lexmark"
X95x Firmware
Search vendor "Lexmark" for product "X95x Firmware"
< lhs60.tq.p683
Search vendor "Lexmark" for product "X95x Firmware" and version " < lhs60.tq.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
X95x
Search vendor "Lexmark" for product "X95x"
--
Safe
Lexmark
Search vendor "Lexmark"
Xc2132 Firmware
Search vendor "Lexmark" for product "Xc2132 Firmware"
< lw71.gm7.p216
Search vendor "Lexmark" for product "Xc2132 Firmware" and version " < lw71.gm7.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Xc2132
Search vendor "Lexmark" for product "Xc2132"
--
Safe
Lexmark
Search vendor "Lexmark"
Xm1145 Firmware
Search vendor "Lexmark" for product "Xm1145 Firmware"
< lw71.sb4.p216
Search vendor "Lexmark" for product "Xm1145 Firmware" and version " < lw71.sb4.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Xm1145
Search vendor "Lexmark" for product "Xm1145"
--
Safe
Lexmark
Search vendor "Lexmark"
Xm3150 Firmware
Search vendor "Lexmark" for product "Xm3150 Firmware"
< lw71.sb7.p216
Search vendor "Lexmark" for product "Xm3150 Firmware" and version " < lw71.sb7.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Xm3150
Search vendor "Lexmark" for product "Xm3150"
--
Safe
Lexmark
Search vendor "Lexmark"
Xm51xx Firmware
Search vendor "Lexmark" for product "Xm51xx Firmware"
< lw71.tu.p216
Search vendor "Lexmark" for product "Xm51xx Firmware" and version " < lw71.tu.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Xm51xx
Search vendor "Lexmark" for product "Xm51xx"
--
Safe
Lexmark
Search vendor "Lexmark"
Xm71xx Firmware
Search vendor "Lexmark" for product "Xm71xx Firmware"
< lw71.tu.p216
Search vendor "Lexmark" for product "Xm71xx Firmware" and version " < lw71.tu.p216"
-
Affected
in Lexmark
Search vendor "Lexmark"
Xm71xx
Search vendor "Lexmark" for product "Xm71xx"
--
Safe
Lexmark
Search vendor "Lexmark"
Xs478 Firmware
Search vendor "Lexmark" for product "Xs478 Firmware"
< lhs60.ny.p683
Search vendor "Lexmark" for product "Xs478 Firmware" and version " < lhs60.ny.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
Xs478
Search vendor "Lexmark" for product "Xs478"
--
Safe
Lexmark
Search vendor "Lexmark"
Xs548 Firmware
Search vendor "Lexmark" for product "Xs548 Firmware"
< lhs60.vk.p683
Search vendor "Lexmark" for product "Xs548 Firmware" and version " < lhs60.vk.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
Xs548
Search vendor "Lexmark" for product "Xs548"
--
Safe
Lexmark
Search vendor "Lexmark"
Xs79x Firmware
Search vendor "Lexmark" for product "Xs79x Firmware"
< lhs60.mr.p683
Search vendor "Lexmark" for product "Xs79x Firmware" and version " < lhs60.mr.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
Xs79x
Search vendor "Lexmark" for product "Xs79x"
--
Safe
Lexmark
Search vendor "Lexmark"
Xs925 Firmware
Search vendor "Lexmark" for product "Xs925 Firmware"
< lhs60.hk.p683
Search vendor "Lexmark" for product "Xs925 Firmware" and version " < lhs60.hk.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
Xs925
Search vendor "Lexmark" for product "Xs925"
--
Safe
Lexmark
Search vendor "Lexmark"
Xs95x Firmware
Search vendor "Lexmark" for product "Xs95x Firmware"
< lhs60.tq.p683
Search vendor "Lexmark" for product "Xs95x Firmware" and version " < lhs60.tq.p683"
-
Affected
in Lexmark
Search vendor "Lexmark"
Xs95x
Search vendor "Lexmark" for product "Xs95x"
--
Safe