[go: up one dir, main page]

Skip to content

This vulnerability allows an attacker to bypass the credentials brute-force prevention mechanism of the Embedded Web Server (interface) of more than 60 Lexmark printer models. This issue affects both username-password and PIN authentication.

License

Notifications You must be signed in to change notification settings

t3l3machus/CVE-2023-22960

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
 
 
 
 
 
 
 
 

Repository files navigation

PoC for CVE-2023-22960

Python License

Details

PoC for CVE-2023-22960 that I discovered. This vulnerability allows an attacker to bypass the credentials brute-force prevention mechanism of the Embedded Web Server interface of all Lexmark printer models that have a firmware version released before 01/2023. This issue affects both username-password and PIN authentication.

Official security advisory -> https://publications.lexmark.com/publications/security-alerts/CVE-2023-22960.pdf

PoC tested against:

  • Lexmark MX622adhe
  • Lexmark CX735adse
  • Lexmark MX521ade

Video Presentation

In this video I demonstrate the issue as well as how to write an http(s) login bruteforce script with Python.
https://www.youtube.com/watch?v=HuAqTScr_3s

Preview

Without the brute-force prevention bypass:
image

Applying the brute-force prevention bypass:
image

About

This vulnerability allows an attacker to bypass the credentials brute-force prevention mechanism of the Embedded Web Server (interface) of more than 60 Lexmark printer models. This issue affects both username-password and PIN authentication.

Topics

Resources

License

Stars

Watchers

Forks

Languages