Strix
26.1K

CVE-2021-44738

CRITICALCVSS 9.8/10EPSS 3.31%

Last modified

CVE-2021-44738 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Buffer overflow vulnerability has been identified in Lexmark devices through 2021-12-07 in postscript interpreter.. EPSS estimates a 3.31% chance of exploitation in the next 30 days.

Description

Buffer overflow vulnerability has been identified in Lexmark devices through 2021-12-07 in postscript interpreter.

Metrics

CVSS 3.1
9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability
3.31%

87.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
LexmarkB2236 Firmware< mslsg.076.294
LexmarkMb2236 Firmware< mxlsg.076.294
LexmarkMs431 Firmware< mslbd.076.294
LexmarkMs331 Firmware< mslbd.076.294
LexmarkM1342 Firmware< mslbd.076.294
LexmarkB3442 Firmware< mslbd.076.294
LexmarkB3340 Firmware< mslbd.076.294
LexmarkXm1342 Firmware< mslbd.076.294
LexmarkMx331 Firmware< mxlbd.076.294
LexmarkMx431 Firmware< mxlbd.076.294
LexmarkMb3442 Firmware< mxlbd.076.294
LexmarkMs321 Firmware< msngm.076.294
LexmarkMs421 Firmware< msngm.076.294
LexmarkMs521 Firmware< msngm.076.294
LexmarkMs621 Firmware< msngm.076.294
LexmarkM1242 Firmware< msngm.076.294
LexmarkM1246 Firmware< msngm.076.294
LexmarkB2338 Firmware< msngm.076.294
LexmarkB2442 Firmware< msngm.076.294
LexmarkB2546 Firmware< msngm.076.294
LexmarkB2650 Firmware< msngm.076.294
LexmarkMs622 Firmware< mstgm.076.294
LexmarkM3250 Firmware< mstgm.076.294
LexmarkMx321 Firmware< mxngm.076.294
LexmarkMb2338 Firmware< mxngm.076.294
LexmarkMx421 Firmware< mxtgm.076.294
LexmarkMx521 Firmware< mxtgm.076.294
LexmarkMx522 Firmware< mxtgm.076.294
LexmarkMx622 Firmware< mxtgm.076.294
LexmarkXm1242 Firmware< mxtgm.076.294
LexmarkXm1246 Firmware< mxtgm.076.294
LexmarkXm3250 Firmware< mxtgm.076.294
LexmarkMb2442 Firmware< mxtgm.076.294
LexmarkMb2546 Firmware< mxtgm.076.294
LexmarkMb2650 Firmware< mxtgm.076.294
LexmarkMs821 Firmware< msngw.076.294
LexmarkMs823 Firmware< msngw.076.294
LexmarkMs825 Firmware< msngw.076.294
LexmarkB2865 Firmware< msngw.076.294
LexmarkMs725 Firmware< msngw.076.294
LexmarkMs822 Firmware< mstgw.076.294
LexmarkMs826 Firmware< mstgw.076.294
LexmarkM5255 Firmware< mstgw.076.294
LexmarkM5270 Firmware< mstgw.076.294
LexmarkMx722 Firmware< mxtgw.076.294
LexmarkMx822 Firmware< mxtgw.076.294
LexmarkMx826 Firmware< mxtgw.076.294
LexmarkXm5365 Firmware< mxtgw.076.294
LexmarkXm7355 Firmware< mxtgw.076.294
LexmarkXm7370 Firmware< mxtgw.076.294

Showing 50 of 235 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2021-44738?
Buffer overflow vulnerability has been identified in Lexmark devices through 2021-12-07 in postscript interpreter.
How severe is CVE-2021-44738?
CVE-2021-44738 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 3.31% probability of exploitation in the next 30 days.
How do I fix CVE-2021-44738?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2021-44738?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST