CVE-2023-26067

Name: CVE-2023-26067
Creator: NVD / NIST
Published: 2023-04-10T20:15:10.387+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.1/10EPSS 37.84%

Last modified Jun 17, 2026

CVE-2023-26067 is a high-severity vulnerability rated 8.1/10 on the CVSS scale. Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 1 of 4).. EPSS estimates a 37.84% chance of exploitation in the next 30 days.

Description

Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 1 of 4).

Metrics

CVSS 3.1

8.1/10

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

37.84%

98.4th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Lexmark	Cxtpc Firmware	< cxtpc.081.232
Lexmark	Cstpc Firmware	< cstpc.081.232
Lexmark	Mxtct Firmware	< mxtct.081.232
Lexmark	Mxtpm Firmware	< mxtpm.081.232
Lexmark	Cxtmm Firmware	< cxtmm.081.232
Lexmark	Mslsg Firmware	< mslsg.081.232
Lexmark	Mxlsg Firmware	< mxlsg.081.232
Lexmark	Mslbd Firmware	< mslbd.081.232
Lexmark	Mxlbd Firmware	< mxlbd.081.232
Lexmark	Msngm Firmware	< msngm.081.232
Lexmark	Mxngm Firmware	< mxngm.081.232
Lexmark	Mxtgm Firmware	< mxtgm.081.232
Lexmark	Msngw Firmware	< msngw.081.232
Lexmark	Mstgw Firmware	< mstgw.081.232
Lexmark	Mxtgw Firmware	< mxtgw.081.232
Lexmark	Cslbn Firmware	< cslbn.081.232
Lexmark	Cslbl Firmware	< cslbl.081.232
Lexmark	Cxlbn Firmware	< cxlbn.081.232
Lexmark	Cxlbl Firmware	< cxlbl.081.232
Lexmark	Csnzj Firmware	< csnzj.081.232
Lexmark	Cxtzj Firmware	< cxtzj.081.232
Lexmark	Cxnzj Firmware	< cxnzj.081.232
Lexmark	Cxtpp Firmware	< cxtpp.081.233
Lexmark	Cxtpp Firmware	< cstpp.081.233
Lexmark	Cstat Firmware	< cstat.081.233
Lexmark	Cxtat Firmware	< cxtat.081.233
Lexmark	Cstmh Firmware	< cstmh.081.233
Lexmark	Cstmh Firmware	< cstmx.081.233

References

Timeline

Published: Apr 10, 2023
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2023-26067?

Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 1 of 4).

How severe is CVE-2023-26067?

CVE-2023-26067 has a CVSS score of 8.1/10 (HIGH severity). The EPSS model estimates a 37.84% probability of exploitation in the next 30 days.

How do I fix CVE-2023-26067?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2023-26067?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST