Stored XSS Vulnerability in Lexmark Printers' Embedded Web Server

Stored XSS Vulnerability in Lexmark Printers' Embedded Web Server

CVE-2019-18791 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Lexmark printer MS812 and multiple older generation Lexmark devices have a stored XSS vulnerability in the embedded web server. The vulnerability can be exploited to expose session credentials and other information via the users web browser.

Learn more about our Web App Pen Testing.