CVE-2014-8741

CRITICAL

Lexmark MarkVision Enterprise <2.1 - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2014-8741. PoCs published by Metasploit, Andrea Micalizzi, juan vazquez, including Metasploit module exploits/windows/http/lexmark_markvision_gfd_upload.

AI-analyzed exploit summary This Metasploit module exploits a directory traversal vulnerability in Lexmark MarkVision Enterprise to upload arbitrary JSP files, achieving remote code execution. It first leaks the installation path via a JSP payload, then uploads and executes a malicious JSP payload.

Description

Directory traversal vulnerability in the GfdFileUploadServerlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to write to arbitrary files via unspecified vectors.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotejava

https://www.exploit-db.com/exploits/35776

View Code ZIP pw:eip

This Metasploit module exploits a directory traversal vulnerability in Lexmark MarkVision Enterprise to upload arbitrary JSP files, achieving remote code execution. It first leaks the installation path via a JSP payload, then uploads and executes a malicious JSP payload.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Lexmark MarkVision Enterprise before 2.1

No auth needed

Prerequisites: Network access to the target server · Target running Lexmark MarkVision Enterprise < 2.1

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1505.003 - Web Shell

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC EXCELLENT

by Andrea Micalizzi, juan vazquez · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/lexmark_markvision_gfd_upload.rb

View Code ZIP pw:eip

This Metasploit module exploits a directory traversal vulnerability in Lexmark MarkVision Enterprise to upload arbitrary JSP files, achieving remote code execution. It first uploads a JSP to leak the installation path, then uploads a malicious JSP payload for execution.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Lexmark MarkVision Enterprise before 2.1

No auth needed

Prerequisites: Network access to the target · Target running vulnerable Lexmark MarkVision Enterprise

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory x_refsource_confirm

http://support.lexmark.com/index?page=content&id=TE666

Third Party Advisory, VDB Entry x_refsource_misc

http://www.zerodayinitiative.com/advisories/ZDI-14-410/

Scores

CVSS v3 9.8

EPSS 0.7035

EPSS Percentile 98.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-22

Status published

Products (1)

lexmark/markvision_enterprise < 2.1

Published Jan 27, 2020

Tracked Since Feb 18, 2026