Lexmark has released a security firmware update to address a remote code execution vulnerability, tracked as CVE-2023-23560, that impacts more than 100 printer models.
The CVE-2023-23560 flaw is a server-side request forgery (SSRF) in the Web Services feature of Lexmark printers, it received a CVSS score 9.0.
“A Server-Side Request Forgery (SSRF) vulnerability has been identified in the Web Services feature of newer Lexmark devices. This vulnerability can be leveraged by an attacker to gain arbitrary code execution on the device.” reads the advisory published by the company.
The compromise of a vulnerable printer can be exploited by threat actors to achieve an initial foothold in the target network. Once compromised a printer, an attacker can access the print spooler exposing sensitive documents or obtain the credentials to the network the device is connected to.
The good news is that the company is not aware of attacks in the wild exploiting the CVE-2023-23560 vulnerability.
However, we cannot exclude that threat actors will start to exploit this flaw due to the public availability of a proof of concept (PoC) exploit code.
