Vulnerability Details CVE-2016-3145
Lexmark printers with firmware ATL before ATL.021.063, CB before CB.021.063, PP before PP.021.063, and YK before YK.021.063 mishandle Erase Printer Memory and Erase Hard Disk actions, which allows physically proximate attackers to obtain sensitive information via direct read operations on non-volatile memory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.0%
CVSS Severity
CVSS v3 Score 4.6
CVSS v2 Score 2.1
References
Products affected by CVE-2016-3145
-
cpe:2.3:h:lexmark:c4150:-
-
cpe:2.3:h:lexmark:c6160:-
-
cpe:2.3:h:lexmark:cs720de:-
-
cpe:2.3:h:lexmark:cs720dte:-
-
cpe:2.3:h:lexmark:cs725de:-
-
cpe:2.3:h:lexmark:cs725dte:-
-
cpe:2.3:h:lexmark:cs820de:-
-
cpe:2.3:h:lexmark:cs820dte:-
-
cpe:2.3:h:lexmark:cs820dtfe:-
-
cpe:2.3:h:lexmark:cx725de:-
-
cpe:2.3:h:lexmark:cx725dhe:-
-
cpe:2.3:h:lexmark:cx725dthe:-
-
cpe:2.3:h:lexmark:cx820de:-
-
cpe:2.3:h:lexmark:cx820dtfe:-
-
cpe:2.3:h:lexmark:cx825de:-
-
cpe:2.3:h:lexmark:cx825dte:-
-
cpe:2.3:h:lexmark:cx825dtfe:-
-
cpe:2.3:h:lexmark:cx860de:-
-
cpe:2.3:h:lexmark:cx860dte:-
-
cpe:2.3:h:lexmark:cx860dtfe:-
-
cpe:2.3:h:lexmark:xc4150:-
-
cpe:2.3:h:lexmark:xc6152de:-
-
cpe:2.3:h:lexmark:xc6152dtfe:-
-
cpe:2.3:h:lexmark:xc8155de:-
-
cpe:2.3:h:lexmark:xc8155dte:-
-
cpe:2.3:h:lexmark:xc8160de:-
-
cpe:2.3:h:lexmark:xc8160dte:-
-
cpe:2.3:o:lexmark:printer_firmware:atl
-
cpe:2.3:o:lexmark:printer_firmware:atl.02.048
-
cpe:2.3:o:lexmark:printer_firmware:atl.021.062
-
cpe:2.3:o:lexmark:printer_firmware:cb
-
cpe:2.3:o:lexmark:printer_firmware:cb.02.048
-
cpe:2.3:o:lexmark:printer_firmware:cb.021.062
-
cpe:2.3:o:lexmark:printer_firmware:pp
-
cpe:2.3:o:lexmark:printer_firmware:pp.02.048
-
cpe:2.3:o:lexmark:printer_firmware:pp.021.062
-
cpe:2.3:o:lexmark:printer_firmware:yk
-
cpe:2.3:o:lexmark:printer_firmware:yk.02.048
-
cpe:2.3:o:lexmark:printer_firmware:yk.021.057
-
cpe:2.3:o:lexmark:printer_firmware:yk.021.062