CVE-2025-65080

MEDIUM

Lexmark Printer PostScript Interpreter - Type Confusion Code Execution

Title source: manual

Description

A type confusion vulnerability has been identified in the Postscript interpreter in various Lexmark devices. This vulnerability can be leveraged by an attacker to execute arbitrary code as an unprivileged user.

References (1)

Core 1

Core References

Various Sources

https://www.lexmark.com/en_us/solutions/security/lexmark-security-advisories.html

Scores

CVSS v4 6.9

EPSS 0.0048

EPSS Percentile 37.3%

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-843

Status published

Products (2)

Lexmark/CSTAT, CXTAT, MSLBD, MXLBD, CSLBL, CXLBL, CSLBN, CXLBN, CSTMH, CXTMH, CSTPP, CXTPP, MSLSG, MXLSG < 230.506

Lexmark/MXTCT, MSNGM, MSTGM, MXNGM, MXTGM, CSNGV, CSTGV, CXTGV, MSNGW, MSTGW, MXTGW, CSTLS, CXTLS, MXTLS, CSTMM, CXTMM, CSTPC, CXTPC, MXTPM, MSNSN, MSTSN, MXTSN, CSNZJ, CSTZJ, CXNZJ, CXTZJ < 250.210

Published Feb 03, 2026

Tracked Since Feb 18, 2026