7.5
HIGH
CVE-2023-40239
Lexmark CS310 XML External Entity Information Disclosure
Description

Certain Lexmark devices (such as CS310) before 2023-08-25 allow XXE attacks, leading to information disclosure. The fixed firmware version is LW80.*.P246, i.e., '*' indicates that the full version specification varies across product model family, but firmware level P246 (or higher) is required to remediate the vulnerability.

INFO

Published Date :

Sept. 1, 2023, 11:15 a.m.

Last Modified :

Sept. 7, 2023, 4:26 p.m.

Remotely Exploitable :

Yes !

Impact Score :

3.6

Exploitability Score :

3.9
Affected Products

The following products are affected by CVE-2023-40239 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Lexmark cx310_firmware
2 Lexmark cx410_firmware
3 Lexmark cx510_firmware
4 Lexmark xc2132_firmware
5 Lexmark xm1145_firmware
6 Lexmark xm3150_firmware
7 Lexmark xc2130_firmware
8 Lexmark ms310_firmware
9 Lexmark ms312_firmware
10 Lexmark ms317_firmware
11 Lexmark ms410_firmware
12 Lexmark m1140_firmware
13 Lexmark ms315_firmware
14 Lexmark ms415_firmware
15 Lexmark ms417_firmware
16 Lexmark ms610dn_firmware
17 Lexmark ms617_firmware
18 Lexmark m1145_firmware
19 Lexmark m3150dn_firmware
20 Lexmark ms610de_firmware
21 Lexmark m5163dn_firmware
22 Lexmark ms811_firmware
23 Lexmark ms817_firmware
24 Lexmark ms818_firmware
25 Lexmark ms810de_firmware
26 Lexmark m5155_firmware
27 Lexmark ms812de_firmware
28 Lexmark m5170_firmware
29 Lexmark xm1135_firmware
30 Lexmark mx410_firmware
31 Lexmark mx510_firmware
32 Lexmark mx511_firmware
33 Lexmark xm1140_firmware
34 Lexmark mx610_firmware
35 Lexmark mx611_firmware
36 Lexmark xm5163_firmware
37 Lexmark xm5170_firmware
38 Lexmark xm7155_firmware
39 Lexmark xm7163_firmware
40 Lexmark xm7170_firmware
41 Lexmark c2132_firmware
42 Lexmark cs310_firmware
43 Lexmark cs317_firmware
44 Lexmark cs410_firmware
45 Lexmark cs417_firmware
46 Lexmark cs510_firmware
47 Lexmark cs517_firmware
48 Lexmark cx317_firmware
49 Lexmark cx417_firmware
50 Lexmark cx517_firmware
51 Lexmark m1140\+_firmware
52 Lexmark m3150de_firmware
53 Lexmark m5163de_firmware
54 Lexmark ms510_firmware
55 Lexmark ms517_firmware
56 Lexmark ms710_firmware
57 Lexmark ms711_firmware
58 Lexmark ms810dn_firmware
59 Lexmark ms812dn_firmware
60 Lexmark ms911_firmware
61 Lexmark mx310_firmware
62 Lexmark mx317_firmware
63 Lexmark mx417_firmware
64 Lexmark mx517_firmware
65 Lexmark mx617_firmware
66 Lexmark mx710_firmware
67 Lexmark mx711_firmware
68 Lexmark mx717_firmware
69 Lexmark mx718_firmware
70 Lexmark mx810_firmware
71 Lexmark mx811_firmware
72 Lexmark mx812_firmware
73 Lexmark mx910_firmware
74 Lexmark mx911_firmware
75 Lexmark mx912_firmware
76 Lexmark xm5263_firmware
77 Lexmark xm5270_firmware
78 Lexmark xm7263_firmware
79 Lexmark xm7270_firmware
80 Lexmark xm9145_firmware
81 Lexmark xm9155_firmware
82 Lexmark xm9165_firmware
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2023-40239.

URL Resource
https://publications.lexmark.com/publications/security-alerts/CVE-2023-40239.pdf Vendor Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2023-40239 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2023-40239 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Modified by [email protected]

    May. 14, 2024

    Action Type Old Value New Value
  • Initial Analysis by [email protected]

    Sep. 07, 2023

    Action Type Old Value New Value
    Added CVSS V3.1 NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    Changed Reference Type https://publications.lexmark.com/publications/security-alerts/CVE-2023-40239.pdf No Types Assigned https://publications.lexmark.com/publications/security-alerts/CVE-2023-40239.pdf Vendor Advisory
    Added CWE NIST CWE-611
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:c2132_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.vy4.p245 OR cpe:2.3:h:lexmark:c2132:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:cs310_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.vyl.p245 OR cpe:2.3:h:lexmark:cs310:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:cs317_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.vyl.p245 OR cpe:2.3:h:lexmark:cs317:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:cs410_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.vy2.p245 OR cpe:2.3:h:lexmark:cs410:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:cs417_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.vy2.p245 OR cpe:2.3:h:lexmark:cs417:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:cs510_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.vy4.p245 OR cpe:2.3:h:lexmark:cs510:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:cs517_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.vy4.p245 OR cpe:2.3:h:lexmark:cs517:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:cx310_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.gm2.p245 OR cpe:2.3:h:lexmark:cx310:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:cx317_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.gm2.p245 OR cpe:2.3:h:lexmark:cx317:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:cx410_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.gm4.p245 OR cpe:2.3:h:lexmark:cx410:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:cx417_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.gm4.p245 OR cpe:2.3:h:lexmark:cx417:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:cx510_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.gm7.p245 OR cpe:2.3:h:lexmark:cx510:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:cx517_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.gm7.p245 OR cpe:2.3:h:lexmark:cx517:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:m1140\+_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.pr2.p245 OR cpe:2.3:h:lexmark:m1140\+:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:m1140_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.prl.p245 OR cpe:2.3:h:lexmark:m1140:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:m1145_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.pr2.p245 OR cpe:2.3:h:lexmark:m1145:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:m3150de_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.pr4.p245 OR cpe:2.3:h:lexmark:m3150de:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:m3150dn_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.pr2.p245 OR cpe:2.3:h:lexmark:m3150dn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:m5155_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.dn4.p245 OR cpe:2.3:h:lexmark:m5155:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:m5163de_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.dn4.p245 OR cpe:2.3:h:lexmark:m5163de:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:m5163dn_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.dn2.p245 OR cpe:2.3:h:lexmark:m5163dn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:m5170_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.dn7.p245 OR cpe:2.3:h:lexmark:m5170:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms310_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.prl.p245 OR cpe:2.3:h:lexmark:ms310:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms312_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.prl.p245 OR cpe:2.3:h:lexmark:ms312:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms315_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tl2.p245 OR cpe:2.3:h:lexmark:ms315:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms317_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.prl.p245 OR cpe:2.3:h:lexmark:ms317:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms410_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.prl.p245 OR cpe:2.3:h:lexmark:ms410:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms415_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tl2.p245 OR cpe:2.3:h:lexmark:ms415:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms417_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tl2.p245 OR cpe:2.3:h:lexmark:ms417:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms510_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.pr2.p245 OR cpe:2.3:h:lexmark:ms510:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms517_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.pr2.p245 OR cpe:2.3:h:lexmark:ms517:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms610de_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.pr4.p245 OR cpe:2.3:h:lexmark:ms610de:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms610dn_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.pr2.p245 OR cpe:2.3:h:lexmark:ms610dn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms617_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.pr2.p245 OR cpe:2.3:h:lexmark:ms617:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms710_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.dn2.p245 OR cpe:2.3:h:lexmark:ms710:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms711_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.dn2.p245 OR cpe:2.3:h:lexmark:ms711:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms810de_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.dn4.p245 OR cpe:2.3:h:lexmark:ms810de:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms810dn_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.dn2.p245 OR cpe:2.3:h:lexmark:ms810dn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms811_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.dn2.p245 OR cpe:2.3:h:lexmark:ms811:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms812de_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.dn7.p245 OR cpe:2.3:h:lexmark:ms812de:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms812dn_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.dn2.p245 OR cpe:2.3:h:lexmark:ms812dn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms817_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.dn2.p245 OR cpe:2.3:h:lexmark:ms817:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms818_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.dn2.p245 OR cpe:2.3:h:lexmark:ms818:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:ms911_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sa.p245 OR cpe:2.3:h:lexmark:ms911:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx310_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb2.p245 OR cpe:2.3:h:lexmark:mx310:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx317_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb2.p245 OR cpe:2.3:h:lexmark:mx317:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx410_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb4.p245 OR cpe:2.3:h:lexmark:mx410:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx417_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb4.p245 OR cpe:2.3:h:lexmark:mx417:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx510_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb4.p245 OR cpe:2.3:h:lexmark:mx510:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx511_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb4.p245 OR cpe:2.3:h:lexmark:mx511:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx517_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb4.p245 OR cpe:2.3:h:lexmark:mx517:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx610_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb7.p245 OR cpe:2.3:h:lexmark:mx610:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx611_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb7.p245 OR cpe:2.3:h:lexmark:mx611:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx617_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb7.p245 OR cpe:2.3:h:lexmark:mx617:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx710_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:mx710:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx711_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:mx711:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx717_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:mx717:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx718_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:mx718:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx810_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:mx810:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx811_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:mx811:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx812_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:mx812:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx910_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.mg.p245 OR cpe:2.3:h:lexmark:mx910:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx911_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.mg.p245 OR cpe:2.3:h:lexmark:mx911:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:mx912_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.mg.p245 OR cpe:2.3:h:lexmark:mx912:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xc2130_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.gm4.p245 OR cpe:2.3:h:lexmark:xc2130:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xc2132_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.gm7.p245 OR cpe:2.3:h:lexmark:xc2132:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm1135_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb2.p245 OR cpe:2.3:h:lexmark:xm1135:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm1140_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb4.p245 OR cpe:2.3:h:lexmark:xm1140:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm1145_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb4.p245 OR cpe:2.3:h:lexmark:xm1145:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm3150_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.sb7.p245 OR cpe:2.3:h:lexmark:xm3150:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm5163_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:xm5163:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm5170_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:xm5170:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm5263_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:xm5263:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm5270_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:xm5270:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm7155_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:xm7155:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm7163_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:xm7163:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm7170_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:xm7170:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm7263_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:xm7263:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm7270_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.tu.p245 OR cpe:2.3:h:lexmark:xm7270:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm9145_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.mg.p245 OR cpe:2.3:h:lexmark:xm9145:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm9155_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.mg.p245 OR cpe:2.3:h:lexmark:xm9155:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:lexmark:xm9165_firmware:*:*:*:*:*:*:*:* versions up to (including) lw80.mg.p245 OR cpe:2.3:h:lexmark:xm9165:-:*:*:*:*:*:*:*
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2023-40239 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2023-40239 weaknesses.

Exploit Prediction

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days.

0.14 }} 0.00%

score

0.49542

percentile

CVSS31 - Vulnerability Scoring System
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability