Vulnerability Details CVE-2016-1896
Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypass authentication by leveraging incorrect detection of the security-jumper status.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.094
EPSS Ranking 92.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2016-1896
-
cpe:2.3:h:lexmark:c4150:-
-
cpe:2.3:h:lexmark:c6160:-
-
cpe:2.3:h:lexmark:cs720de:-
-
cpe:2.3:h:lexmark:cs720dte:-
-
cpe:2.3:h:lexmark:cs725de:-
-
cpe:2.3:h:lexmark:cs725dte:-
-
cpe:2.3:h:lexmark:cs820de:-
-
cpe:2.3:h:lexmark:cs820dte:-
-
cpe:2.3:h:lexmark:cs820dtfe:-
-
cpe:2.3:h:lexmark:cx725de:-
-
cpe:2.3:h:lexmark:cx725dhe:-
-
cpe:2.3:h:lexmark:cx725dthe:-
-
cpe:2.3:h:lexmark:cx820de:-
-
cpe:2.3:h:lexmark:cx820dtfe:-
-
cpe:2.3:h:lexmark:cx825de:-
-
cpe:2.3:h:lexmark:cx825dte:-
-
cpe:2.3:h:lexmark:cx825dtfe:-
-
cpe:2.3:h:lexmark:cx860de:-
-
cpe:2.3:h:lexmark:cx860dte:-
-
cpe:2.3:h:lexmark:cx860dtfe:-
-
cpe:2.3:h:lexmark:xc4150:-
-
cpe:2.3:h:lexmark:xc6152de:-
-
cpe:2.3:h:lexmark:xc6152dtfe:-
-
cpe:2.3:h:lexmark:xc8155de:-
-
cpe:2.3:h:lexmark:xc8155dte:-
-
cpe:2.3:h:lexmark:xc8160de:-
-
cpe:2.3:h:lexmark:xc8160dte:-
-
cpe:2.3:o:lexmark:printer_firmware:atl
-
cpe:2.3:o:lexmark:printer_firmware:atl.02.048
-
cpe:2.3:o:lexmark:printer_firmware:atl.021.062
-
cpe:2.3:o:lexmark:printer_firmware:atl.021.063
-
cpe:2.3:o:lexmark:printer_firmware:cb
-
cpe:2.3:o:lexmark:printer_firmware:cb.02.048
-
cpe:2.3:o:lexmark:printer_firmware:cb.021.062
-
cpe:2.3:o:lexmark:printer_firmware:cb.021.063
-
cpe:2.3:o:lexmark:printer_firmware:pp
-
cpe:2.3:o:lexmark:printer_firmware:pp.02.048
-
cpe:2.3:o:lexmark:printer_firmware:pp.021.062
-
cpe:2.3:o:lexmark:printer_firmware:pp.021.063
-
cpe:2.3:o:lexmark:printer_firmware:yk
-
cpe:2.3:o:lexmark:printer_firmware:yk.02.048