CVE-2019-16758

HIGH

Lexmark Services Monitor <2.27.4.0.39 - Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2019-16758. PoCs published by Kevin Randall, KevinRandall1337.

AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in Lexmark Services Monitor 2.27.4.0.39, allowing unauthorized access to sensitive system files via crafted HTTP GET requests. The PoC includes multiple examples of traversal sequences to retrieve files like `PerfStringBackup.ini`, `slmgr.ini`, and `services`.

Description

In Lexmark Services Monitor 2.27.4.0.39 (running on TCP port 2070), a remote attacker can use a directory traversal technique using /../../../ or ..%2F..%2F..%2F to obtain local files on the host operating system.

Exploits (2)

exploitdb WORKING POC
by Kevin Randall · textwebappshardware
https://www.exploit-db.com/exploits/47663

This exploit demonstrates a directory traversal vulnerability in Lexmark Services Monitor 2.27.4.0.39, allowing unauthorized access to sensitive system files via crafted HTTP GET requests. The PoC includes multiple examples of traversal sequences to retrieve files like `PerfStringBackup.ini`, `slmgr.ini`, and `services`.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Lexmark Services Monitor 2.27.4.0.39
No auth needed
Prerequisites: Network access to TCP port 2070 on the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2019/Nov/17

Scores

CVSS v3 7.5
EPSS 0.1676
EPSS Percentile 96.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-22
Status published
Products (1)
lexmark/services_monitor_firmware 2.27.4.0.39
Published Nov 21, 2019
Tracked Since Feb 18, 2026