CVE-2023-40239

Certain Lexmark devices (such as CS310) before 2023-08-25 allow XXE attacks, leading to information disclosure. The fixed firmware version is LW80.*.P246, i.e., ‘*’ indicates that the full version specification varies across product model family, but firmware level P246 (or higher) is required to remediate the vulnerability. (CVSS:7.5) (EPSS:0.09%) (Last Update:2023-09-07 16:26:27)    Latest security vulnerabilities (Gain Information) (CVSS score >= 4) 

More To Explore