CVE-2021-44735
CRITICALLexmark B2236 Firmware < mslsg.076.294 - Command Injection
Title source: ruleDescription
Embedded web server command injection vulnerability in Lexmark devices through 2021-12-07.
Exploits (1)
References (4)
Scores
CVSS v3
9.8
EPSS
0.1323
EPSS Percentile
94.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-77
Status
published
Products (50)
lexmark/b2236_firmware
< mslsg.076.294
lexmark/b2338_firmware
< msngm.076.294
lexmark/b2442_firmware
< msngm.076.294
lexmark/b2546_firmware
< msngm.076.294
lexmark/b2650_firmware
< msngm.076.294
lexmark/b2865_firmware
< msngw.076.294
lexmark/b3340_firmware
< mslbd.076.294
lexmark/b3442_firmware
< mslbd.076.294
lexmark/c2240_firmware
< cstzj.076.294
lexmark/c2325_firmware
< csnzj.076.294
... and 40 more
Published
Jan 20, 2022
Tracked Since
Feb 18, 2026