CVE-2020-10094

5.4

MEDIUM

Lexmark Lexmark Cross-Site Scripting Vulnerability

Description

A cross-site scripting (XSS) vulnerability in Lexmark CS31x before LW74.VYL.P273; CS41x before LW74.VY2.P273; CS51x before LW74.VY4.P273; CX310 before LW74.GM2.P273; CX410 & XC2130 before LW74.GM4.P273; CX510 & XC2132 before LW74.GM7.P273; MS310, MS312, MS317 before LW74.PRL.P273; MS410, M1140 before LW74.PRL.P273; MS315, MS415, MS417 before LW74.TL2.P273; MS51x, MS610dn, MS617 before LW74.PR2.P273; M1145, M3150dn before LW74.PR2.P273; MS610de, M3150 before LW74.PR4.P273; MS71x,M5163dn before LW74.DN2.P273; MS810, MS811, MS812, MS817, MS818 before LW74.DN2.P273; MS810de, M5155, M5163 before LW74.DN4.P273; MS812de, M5170 before LW74.DN7.P273; MS91x before LW74.SA.P273; MX31x, XM1135 before LW74.SB2.P273; MX410, MX510 & MX511 before LW74.SB4.P273; XM1140, XM1145 before LW74.SB4.P273; MX610 & MX611 before LW74.SB7.P273; XM3150 before LW74.SB7.P273; MX71x, MX81x before LW74.TU.P273; XM51xx & XM71xx before LW74.TU.P273; MX91x & XM91x before LW74.MG.P273; MX6500e before LW74.JD.P273; C746 before LHS60.CM2.P738; C748, CS748 before LHS60.CM4.P738; C792, CS796 before LHS60.HC.P738; C925 before LHS60.HV.P738; C950 before LHS60.TP.P738; X548 & XS548 before LHS60.VK.P738; X74x & XS748 before LHS60.NY.P738; X792 & XS79x before LHS60.MR.P738; X925 & XS925 before LHS60.HK.P738; X95x & XS95x before LHS60.TQ.P738; 6500e before LHS60.JR.P738;C734 LR.SK.P824 and earlier; C736 LR.SKE.P824 and earlier; E46x LR.LBH.P824 and earlier; T65x LR.JP.P824 and earlier; X46x LR.BS.P824 and earlier; X65x LR.MN.P824 and earlier; X73x LR.FL.P824 and earlier; W850 LP.JB.P823 and earlier; and X86x LP.SP.P823 and earlier.

INFO

Published Date :

April 28, 2020, 2:15 p.m.

Last Modified :

May 4, 2020, 9:43 p.m.

Source :

[email protected]

Remotely Exploitable :

Yes !

Impact Score :

2.7

Exploitability Score :

2.3

Affected Products

The following products are affected by CVE-2020-10094 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID	Vendor	Product
1	Lexmark	cx310_firmware
2	Lexmark	cx410_firmware
3	Lexmark	cx510_firmware
4	Lexmark	xc2132_firmware
5	Lexmark	mx31x_firmware
6	Lexmark	xm1145_firmware
7	Lexmark	xm3150_firmware
8	Lexmark	mx71x_firmware
9	Lexmark	mx81x_firmware
10	Lexmark	xm51xx_firmware
11	Lexmark	xm71xx_firmware
12	Lexmark	mx91x_firmware
13	Lexmark	xm91x_firmware
14	Lexmark	x74x_firmware
15	Lexmark	xs79x_firmware
16	Lexmark	x95x_firmware
17	Lexmark	xs95x_firmware
18	Lexmark	x46x_firmware
19	Lexmark	x65x_firmware
20	Lexmark	x73x_firmware
21	Lexmark	x86x_firmware
22	Lexmark	cs31x_firmware
23	Lexmark	cs41x_firmware
24	Lexmark	cs51x_firmware
25	Lexmark	xc2130_firmware
26	Lexmark	ms310_firmware
27	Lexmark	ms312_firmware
28	Lexmark	ms317_firmware
29	Lexmark	ms410_firmware
30	Lexmark	m1140_firmware
31	Lexmark	ms315_firmware
32	Lexmark	ms415_firmware
33	Lexmark	ms417_firmware
34	Lexmark	ms51x_firmware
35	Lexmark	ms610dn_firmware
36	Lexmark	ms617_firmware
37	Lexmark	m1145_firmware
38	Lexmark	m3150dn_firmware
39	Lexmark	ms610de_firmware
40	Lexmark	m3150_firmware
41	Lexmark	ms71x_firmware
42	Lexmark	m5163dn_firmware
43	Lexmark	ms810_firmware
44	Lexmark	ms811_firmware
45	Lexmark	ms812_firmware
46	Lexmark	ms817_firmware
47	Lexmark	ms818_firmware
48	Lexmark	ms810de_firmware
49	Lexmark	m5155_firmware
50	Lexmark	m5163_firmware
51	Lexmark	ms812de_firmware
52	Lexmark	m5170_firmware
53	Lexmark	ms91x_firmware
54	Lexmark	xm1135_firmware
55	Lexmark	mx410_firmware
56	Lexmark	mx510_firmware
57	Lexmark	mx511_firmware
58	Lexmark	xm1140_firmware
59	Lexmark	mx610_firmware
60	Lexmark	mx611_firmware
61	Lexmark	mx6500e_firmware
62	Lexmark	c746_firmware
63	Lexmark	c748_firmware
64	Lexmark	cs748_firmware
65	Lexmark	c792_firmware
66	Lexmark	cs796_firmware
67	Lexmark	c925_firmware
68	Lexmark	c950_firmware
69	Lexmark	x548_firmware
70	Lexmark	xs548_firmware
71	Lexmark	xs748_firmware
72	Lexmark	x792_firmware
73	Lexmark	x925_firmware
74	Lexmark	xs925_firmware
75	Lexmark	6500e_firmware
76	Lexmark	c734_firmware
77	Lexmark	c736_firmware
78	Lexmark	e46x_firmware
79	Lexmark	t65x_firmware
80	Lexmark	w850_firmware

: Total Affected Vendor : 1 | Products : 80

References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2020-10094.

URL	Resource
http://support.lexmark.com/index?page=content&id=TE936	Vendor Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2020-10094 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2020-10094 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

CVE Modified by [email protected]

May. 14, 2024

Action	Type	Old Value	New Value

Initial Analysis by [email protected]

May. 04, 2020

Action	Type	Old Value	New Value
Added	CVSS V2 Metadata		Victim must voluntarily interact with attack mechanism
Added	CVSS V2		NIST (AV:N/AC:M/Au:S/C:N/I:P/A:N)
Added	CVSS V3.1		NIST AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Changed	Reference Type	http://support.lexmark.com/index?page=content&id=TE936 No Types Assigned	http://support.lexmark.com/index?page=content&id=TE936 Vendor Advisory
Added	CWE		NIST CWE-79
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:cs31x_firmware::::::::* versions up to (including) lw74.vyl.p272 OR cpe:2.3:h:lexmark:cs31x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:cs41x_firmware::::::::* versions up to (including) lw74.vy2.p272 OR cpe:2.3:h:lexmark:cs41x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:cs51x_firmware::::::::* versions up to (including) lw74.vy4.p272 OR cpe:2.3:h:lexmark:cs51x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:cx310_firmware::::::::* versions up to (including) lw74.gm2.p272 OR cpe:2.3:h:lexmark:cx310:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:cx410_firmware::::::::* versions up to (including) lw74.gm4.p272 OR cpe:2.3:h:lexmark:cx410:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xc2130_firmware::::::::* versions up to (including) lw74.gm4.p272 OR cpe:2.3:h:lexmark:xc2130:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:cx510_firmware::::::::* versions up to (including) lw74.gm7.p272 OR cpe:2.3:h:lexmark:cx510:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xc2132_firmware::::::::* versions up to (including) lw74.gm7.p272 OR cpe:2.3:h:lexmark:xc2132:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms310_firmware::::::::* versions up to (including) lw74.prl.p272 OR cpe:2.3:h:lexmark:ms310:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms312_firmware::::::::* versions up to (including) lw74.prl.p272 OR cpe:2.3:h:lexmark:ms312:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms317_firmware::::::::* versions up to (including) lw74.prl.p272 OR cpe:2.3:h:lexmark:ms317:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms410_firmware::::::::* versions up to (including) lw74.prl.p272 OR cpe:2.3:h:lexmark:ms410:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:m1140_firmware::::::::* versions up to (including) lw74.prl.p272 OR cpe:2.3:h:lexmark:m1140:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms315_firmware::::::::* versions up to (including) lw74.tl2.p272 OR cpe:2.3:h:lexmark:ms315:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms415_firmware::::::::* versions up to (including) lw74.tl2.p272 OR cpe:2.3:h:lexmark:ms415:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms417_firmware::::::::* versions up to (including) lw74.tl2.p272 OR cpe:2.3:h:lexmark:ms417:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms51x_firmware::::::::* versions up to (including) lw74.pr2.p272 OR cpe:2.3:h:lexmark:ms51x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms610dn_firmware::::::::* versions up to (including) lw74.pr2.p272 OR cpe:2.3:h:lexmark:ms610dn:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms617_firmware::::::::* versions up to (including) lw74.pr2.p272 OR cpe:2.3:h:lexmark:ms617:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:m1145_firmware::::::::* versions up to (including) lw74.pr2.p272 OR cpe:2.3:h:lexmark:m1145:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:m3150dn_firmware::::::::* versions up to (including) lw74.pr2.p272 OR cpe:2.3:h:lexmark:m3150dn:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms610de_firmware::::::::* versions up to (including) lw74.pr4.p272 OR cpe:2.3:h:lexmark:ms610de:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:m3150_firmware::::::::* versions up to (including) lw74.pr4.p272 OR cpe:2.3:h:lexmark:m3150:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms71x_firmware::::::::* versions up to (including) lw74.dn2.p272 OR cpe:2.3:h:lexmark:ms71x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:m5163dn_firmware::::::::* versions up to (including) lw74.dn2.p272 OR cpe:2.3:h:lexmark:m5163dn:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms810_firmware::::::::* versions up to (including) lw74.dn2.p272 OR cpe:2.3:h:lexmark:ms810:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms811_firmware::::::::* versions up to (including) lw74.dn2.p272 OR cpe:2.3:h:lexmark:ms811:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms812_firmware::::::::* versions up to (including) lw74.dn2.p272 OR cpe:2.3:h:lexmark:ms812:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms817_firmware::::::::* versions up to (including) lw74.dn2.p272 OR cpe:2.3:h:lexmark:ms817:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms818_firmware::::::::* versions up to (including) lw74.dn2.p272 OR cpe:2.3:h:lexmark:ms818:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms810de_firmware::::::::* versions up to (including) lw74.dn4.p272 OR cpe:2.3:h:lexmark:ms810de:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:m5155_firmware::::::::* versions up to (including) lw74.dn4.p272 OR cpe:2.3:h:lexmark:m5155:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:m5163_firmware::::::::* versions up to (including) lw74.dn4.p272 OR cpe:2.3:h:lexmark:m5163:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms812de_firmware::::::::* versions up to (including) lw74.dn7.p272 OR cpe:2.3:h:lexmark:ms812de:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:m5170_firmware::::::::* versions up to (including) lw74.dn7.p272 OR cpe:2.3:h:lexmark:m5170:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:ms91x_firmware::::::::* versions up to (including) lw74.sa.p272 OR cpe:2.3:h:lexmark:ms91x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:mx31x_firmware::::::::* versions up to (including) lw74.sb2.p272 OR cpe:2.3:h:lexmark:mx31x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xm1135_firmware::::::::* versions up to (including) lw74.sb2.p272 OR cpe:2.3:h:lexmark:xm1135:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:mx410_firmware::::::::* versions up to (including) lw74.sb4.p272 OR cpe:2.3:h:lexmark:mx410:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:mx510_firmware::::::::* versions up to (including) lw74.sb4.p272 OR cpe:2.3:h:lexmark:mx510:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:mx511_firmware::::::::* versions up to (including) lw74.sb4.p272 OR cpe:2.3:h:lexmark:mx511:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xm1140_firmware::::::::* versions up to (including) lw74.sb4.p272 OR cpe:2.3:h:lexmark:xm1140:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xm1145_firmware::::::::* versions up to (including) lw74.sb4.p272 OR cpe:2.3:h:lexmark:xm1145:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:mx610_firmware::::::::* versions up to (including) lw74.sb7.p272 OR cpe:2.3:h:lexmark:mx610:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:mx611_firmware::::::::* versions up to (including) lw74.sb7.p272 OR cpe:2.3:h:lexmark:mx611:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xm3150_firmware::::::::* versions up to (including) lw74.sb7.p272 OR cpe:2.3:h:lexmark:xm3150:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:mx71x_firmware::::::::* versions up to (including) lw74.tu.p272 OR cpe:2.3:h:lexmark:mx71x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:mx81x_firmware::::::::* versions up to (including) lw74.tu.p272 OR cpe:2.3:h:lexmark:mx81x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xm51xx_firmware::::::::* versions up to (including) lw74.tu.p272 OR cpe:2.3:h:lexmark:xm51xx:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xm71xx_firmware::::::::* versions up to (including) lw74.tu.p272 OR cpe:2.3:h:lexmark:xm71xx:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:mx91x_firmware::::::::* versions up to (including) lw74.mg.p272 OR cpe:2.3:h:lexmark:mx91x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xm91x_firmware::::::::* versions up to (including) lw74.mg.p272 OR cpe:2.3:h:lexmark:xm91x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:mx6500e_firmware::::::::* versions up to (including) lw74.jd.p272 OR cpe:2.3:h:lexmark:mx6500e:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:c746_firmware::::::::* versions up to (including) lhs60.cm2.p737 OR cpe:2.3:h:lexmark:c746:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:c748_firmware::::::::* versions up to (including) lhs60.cm4.p737 OR cpe:2.3:h:lexmark:c748:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:cs748_firmware::::::::* versions up to (including) lhs60.cm4.p737 OR cpe:2.3:h:lexmark:cs748:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:c792_firmware::::::::* versions up to (including) lhs60.hc.p737 OR cpe:2.3:h:lexmark:c792:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:cs796_firmware::::::::* versions up to (including) lhs60.hc.p737 OR cpe:2.3:h:lexmark:cs796:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:c925_firmware::::::::* versions up to (including) lhs60.hv.p737 OR cpe:2.3:h:lexmark:c925:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:c950_firmware::::::::* versions up to (including) lhs60.tp.p737 OR cpe:2.3:h:lexmark:c950:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:x548_firmware::::::::* versions up to (including) lhs60.vk.p737 OR cpe:2.3:h:lexmark:x548:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xs548_firmware::::::::* versions up to (including) lhs60.vk.p737 OR cpe:2.3:h:lexmark:xs548:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:x74x_firmware::::::::* versions up to (including) lhs60.ny.p737 OR cpe:2.3:h:lexmark:x74x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xs748_firmware::::::::* versions up to (including) lhs60.ny.p737 OR cpe:2.3:h:lexmark:xs748:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:x792_firmware::::::::* versions up to (including) lhs60.mr.p737 OR cpe:2.3:h:lexmark:x792:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xs79x_firmware::::::::* versions up to (including) lhs60.mr.p737 OR cpe:2.3:h:lexmark:xs79x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:x925_firmware::::::::* versions up to (including) lhs60.hk.p737 OR cpe:2.3:h:lexmark:x925:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xs925_firmware::::::::* versions up to (including) lhs60.hk.p737 OR cpe:2.3:h:lexmark:xs925:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:x95x_firmware::::::::* versions up to (including) lhs60.tq.p737 OR cpe:2.3:h:lexmark:x95x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:xs95x_firmware::::::::* versions up to (including) lhs60.tq.p737 OR cpe:2.3:h:lexmark:xs95x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:6500e_firmware::::::::* versions up to (including) lhs60.jr.p737 OR cpe:2.3:h:lexmark:6500e:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:c734_firmware::::::::* versions up to (including) lr.sk.p824 OR cpe:2.3:h:lexmark:c734:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:c736_firmware::::::::* versions up to (including) lr.ske.p824 OR cpe:2.3:h:lexmark:c736:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:e46x_firmware::::::::* versions up to (including) lr.lbh.p824 OR cpe:2.3:h:lexmark:e46x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:t65x_firmware::::::::* versions up to (including) lr.jp.p824 OR cpe:2.3:h:lexmark:t65x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:x46x_firmware::::::::* versions up to (including) lr.bs.p824 OR cpe:2.3:h:lexmark:x46x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:x65x_firmware::::::::* versions up to (including) lr.mn.p824 OR cpe:2.3:h:lexmark:x65x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:x73x_firmware::::::::* versions up to (including) lr.fl.p824 OR cpe:2.3:h:lexmark:x73x:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:w850_firmware::::::::* versions up to (including) lp.jb.p823 OR cpe:2.3:h:lexmark:w850:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:lexmark:x86x_firmware::::::::* versions up to (including) lp.sp.p823 OR cpe:2.3:h:lexmark:x86x:-:::::::*

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.

CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2020-10094 is associated with the following CWEs:

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2020-10094 weaknesses.

CAPEC-63: Cross-Site Scripting (XSS) Cross-Site Scripting (XSS) CAPEC-85: AJAX Footprinting AJAX Footprinting CAPEC-209: XSS Using MIME Type Mismatch XSS Using MIME Type Mismatch CAPEC-588: DOM-Based XSS DOM-Based XSS CAPEC-591: Reflected XSS Reflected XSS CAPEC-592: Stored XSS Stored XSS

CVE-2020-10094

Lexmark Lexmark Cross-Site Scripting Vulnerability

Description

INFO

April 28, 2020, 2:15 p.m.

May 4, 2020, 9:43 p.m.

[email protected]

Yes !

2.7

2.3

Affected Products

References to Advisories, Solutions, and Tools

CVE Modified by [email protected]

Initial Analysis by [email protected]

CWE - Common Weakness Enumeration

Common Attack Pattern Enumeration and Classification (CAPEC)

Exploit Prediction

0.05 }} 0.00%

0.20649

CVSS31 - Vulnerability Scoring System

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable