CVE-2013-6032

CVSS V2 High 10 CVSS V3 None
Description
cgi-bin/postpf/cgi-bin/dynamic/config/config.html on Lexmark X94x before LC.BR.P142, X85x through LC4.BE.P487, X644 and X646 before LC2.MC.P374, X642 through LC2.MB.P318, W840 through LS.HA.P252, T64x before LS.ST.P344, X64xef through LC2.TI.P325, C935dn through LC.JO.P091, C920 through LS.TA.P152, C78x through LC.IO.P187, X78x through LC2.IO.P335, C77x through LC.CM.P052, X772 through LC2.TR.P291, C53x through LS.SW.P069, C52x through LS.FA.P150, 25xxN through LCL.CU.P114, N4000 through LC.MD.P119, N4050e through GO.GO.N206, N70xxe through LC.CO.N309, E450 through LM.SZ.P124, E350 through LE.PH.P129, and E250 through LE.PM.P126 printers allows remote attackers to remove the Password Protect administrative password via the vac.255.GENPASSWORD parameter.
Overview
  • CVE ID
  • CVE-2013-6032
  • Assigner
  • cret@cert.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2014-02-04T05:39:08
  • Last Modified Date
  • 2014-02-04T15:29:21
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:h:lexmark:25xxn:*:*:*:*:*:*:*:* 1 OR lcl.cu.p114
cpe:2.3:h:lexmark:c52x:*:*:*:*:*:*:*:* 1 OR ls.fa.p150
cpe:2.3:h:lexmark:c53x:*:*:*:*:*:*:*:* 1 OR ls.sw.p069
cpe:2.3:h:lexmark:c77x:*:*:*:*:*:*:*:* 1 OR lc.cm.p052
cpe:2.3:h:lexmark:c78x:*:*:*:*:*:*:*:* 1 OR lc.io.p187
cpe:2.3:h:lexmark:c920:*:*:*:*:*:*:*:* 1 OR ls.ta.p152
cpe:2.3:h:lexmark:c935dn:*:*:*:*:*:*:*:* 1 OR lc.jo.p091
cpe:2.3:h:lexmark:e250:*:*:*:*:*:*:*:* 1 OR le.pm.p126
cpe:2.3:h:lexmark:e350:*:*:*:*:*:*:*:* 1 OR le.ph.p129
cpe:2.3:h:lexmark:e450:*:*:*:*:*:*:*:* 1 OR lm.sz.p124
cpe:2.3:h:lexmark:n4000:*:*:*:*:*:*:*:* 1 OR lc.md.p119
cpe:2.3:h:lexmark:n4050e:*:*:*:*:*:*:*:* 1 OR go.go.n206
cpe:2.3:h:lexmark:n70xxe:*:*:*:*:*:*:*:* 1 OR lc.co.n309
cpe:2.3:h:lexmark:t64x:*:*:*:*:*:*:*:* 1 OR ls.st.p343
cpe:2.3:h:lexmark:w840:*:*:*:*:*:*:*:* 1 OR ls.ha.p252
cpe:2.3:h:lexmark:x642:*:*:*:*:*:*:*:* 1 OR lc2.mb.p318
cpe:2.3:h:lexmark:x644:*:*:*:*:*:*:*:* 1 OR lc4.be.p487
cpe:2.3:h:lexmark:x646:*:*:*:*:*:*:*:* 1 OR lc2.mc.p373
cpe:2.3:h:lexmark:x64xef:*:*:*:*:*:*:*:* 1 OR lc2.ti.p325
cpe:2.3:h:lexmark:x772:*:*:*:*:*:*:*:* 1 OR lc2.tr.p291
cpe:2.3:h:lexmark:x78x:*:*:*:*:*:*:*:* 1 OR lc2.io.p335
cpe:2.3:h:lexmark:x85x:*:*:*:*:*:*:*:* 1 OR lc4.be.p487
cpe:2.3:h:lexmark:x94x:*:*:*:*:*:*:*:* 1 OR lc.br.p141
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:N/AC:L/Au:N/C:C/I:C/A:C
  • Access Vector
  • NETWORK
  • Access Compatibility
  • LOW
  • Authentication
  • NONE
  • Confidentiality Impact
  • COMPLETE
  • Integrity Impact
  • COMPLETE
  • Availability Impact
  • COMPLETE
  • Base Score
  • 10
  • Severity
  • HIGH
  • Exploitability Score
  • 10
  • Impact Score
  • 10
References
History
Created Old Value New Value Data Type Notes
2022-05-10 10:38:24 Added to TrackCVE
2022-12-01 21:46:10 cert@cert.org cret@cert.org CVE Assigner updated
2022-12-01 21:46:10 2014-02-04T05:39Z 2014-02-04T05:39:08 CVE Published Date updated
2022-12-01 21:46:11 2014-02-04T15:29:21 CVE Modified Date updated
2022-12-01 21:46:11 Analyzed Vulnerability Status updated