CVE-2018-15520

Name: CVE-2018-15520
Creator: NVD / NIST
Published: 2019-06-28T16:15:09.463+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 1.19%

Last modified Jun 17, 2026

CVE-2018-15520 is a vulnerability of currently unknown severity. Various Lexmark devices have a Buffer Overflow (issue 2 of 2).. EPSS estimates a 1.19% chance of exploitation in the next 30 days.

Description

Various Lexmark devices have a Buffer Overflow (issue 2 of 2).

Metrics

EPSS Probability

1.19%

63.9th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-119

Affected Software

Vendor	Product	Versions
Lexmark	Cx82x Firmware	<= cxtpp.052.024
Lexmark	Cx82x Firmware	>= cxtpp.052.200, <= cxtpp.052.204
Lexmark	Cx860 Firmware	<= cxtpp.052.024
Lexmark	Cx860 Firmware	>= cxtpp.052.200, <= cxtpp.052.204
Lexmark	Xc6152 Firmware	<= cxtpp.052.024
Lexmark	Xc6152 Firmware	>= cxtpp.052.200, <= cxtpp.052.204
Lexmark	Xc8155 Firmware	<= cxtpp.052.024
Lexmark	Xc8155 Firmware	>= cxtpp.052.200, <= cxtpp.052.204
Lexmark	Xc8160 Firmware	<= cxtpp.052.024
Lexmark	Xc8160 Firmware	>= cxtpp.052.200, <= cxtpp.052.204
Lexmark	Cx72x Firmware	<= cxtat.052.024
Lexmark	Cx72x Firmware	>= cxtat.052.200, <= cxtat.052.204
Lexmark	Xc41x0 Firmware	<= cxtat.052.024
Lexmark	Xc41x0 Firmware	>= cxtat.052.200, <= cxtat.052.204
Lexmark	Cx92x Firmware	<= cxtmh.052.024
Lexmark	Cx92x Firmware	>= cxtmh.052.200, <= cxtmh.052.204
Lexmark	Xc92x5 Firmware	<= cxtmh.052.024
Lexmark	Xc92x5 Firmware	>= cxtmh.052.200, <= cxtmh.052.204
Lexmark	Mx321 Firmware	<= mxngm.052.024
Lexmark	Mx321 Firmware	>= mxngm.052.200, <= mxngm.052.204
Lexmark	Mb2338 Firmware	<= mxngm.052.024
Lexmark	Mb2338 Firmware	>= mxngm.052.200, <= mxngm.052.204
Lexmark	Mx42x Firmware	<= mxtgm.052.024
Lexmark	Mx42x Firmware	>= mxtgm.052.200, <= mxtgm.052.204
Lexmark	Mx52x Firmware	<= mxtgm.052.024
Lexmark	Mx52x Firmware	>= mxtgm.052.200, <= mxtgm.052.204
Lexmark	Mx622 Firmware	<= mxtgm.052.024
Lexmark	Mx622 Firmware	>= mxtgm.052.200, <= mxtgm.052.204
Lexmark	Mb2442 Firmware	<= mxtgm.052.024
Lexmark	Mb2442 Firmware	>= mxtgm.052.200, <= mxtgm.052.204
Lexmark	Mb2546 Firmware	<= mxtgm.052.024
Lexmark	Mb2546 Firmware	>= mxtgm.052.200, <= mxtgm.052.204
Lexmark	Mb2650 Firmware	<= mxtgm.052.024
Lexmark	Mb2650 Firmware	>= mxtgm.052.200, <= mxtgm.052.204
Lexmark	Xm124x Firmware	<= mxtgm.052.024
Lexmark	Xm124x Firmware	>= mxtgm.052.200, <= mxtgm.052.204
Lexmark	Xm3250 Firmware	<= mxtgm.052.024
Lexmark	Xm3250 Firmware	>= mxtgm.052.200, <= mxtgm.052.204
Lexmark	Mx72x Firmware	<= mxtgw.052.024
Lexmark	Mx72x Firmware	>= mxtgw.052.200, <= mxtgw.052.204
Lexmark	Mx82x Firmware	<= mxtgw.052.024
Lexmark	Mx82x Firmware	>= mxtgw.052.200, <= mxtgw.052.204
Lexmark	Mb2770 Firmware	<= mxtgw.052.024
Lexmark	Mb2770 Firmware	>= mxtgw.052.200, <= mxtgw.052.204
Lexmark	Xm5370 Firmware	<= mxtgw.052.024
Lexmark	Xm5370 Firmware	>= mxtgw.052.200, <= mxtgw.052.204
Lexmark	Xm7355 Firmware	<= mxtgw.052.024
Lexmark	Xm7355 Firmware	>= mxtgw.052.200, <= mxtgw.052.204
Lexmark	Xm7370 Firmware	<= mxtgw.052.024
Lexmark	Xm7370 Firmware	>= mxtgw.052.200, <= mxtgw.052.204

Showing 50 of 68 affected configurations. See NVD for the full list.

References

http://support.lexmark.com/index?page=content&id=TE892Vendor Advisory
http://support.lexmark.com/index?page=content&id=TE892Vendor Advisory

Timeline

Published: Jun 28, 2019
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2018-15520?

Various Lexmark devices have a Buffer Overflow (issue 2 of 2).

How severe is CVE-2018-15520?

Severity scoring for CVE-2018-15520 is pending analysis. The EPSS model estimates a 1.19% probability of exploitation in the next 30 days.

How do I fix CVE-2018-15520?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2018-15520?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST