CVE-2019-9930

Q: What is the severity of CVE-2019-9930?

CVE-2019-9930 has a CVSS score of 9.8 (CRITICAL). CVE-2019-9930 is an integer overflow vulnerability affecting various Lexmark printers and multifunction devices. This vulnerability could allow remote attackers to execute arbitrary code or cause denial of service. Organizations using affected Lexmark devices are at risk.

9.8 CRITICAL

Denial of Service

📋 TL;DR

CVE-2019-9930 is an integer overflow vulnerability affecting various Lexmark printers and multifunction devices. This vulnerability could allow remote attackers to execute arbitrary code or cause denial of service. Organizations using affected Lexmark devices are at risk.

💻 Affected Systems

Products:

Various Lexmark printers and multifunction devices

Versions: Specific firmware versions not detailed in public references; all unpatched devices are vulnerable

Operating Systems: Embedded printer OS/firmware

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with network connectivity enabled; physical-only devices without network access are not vulnerable.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with SYSTEM/root privileges leading to complete device compromise, lateral movement into corporate networks, and persistent backdoor installation.

🟠

Likely Case

Denial of service causing printer/multifunction device crashes, rendering devices unusable until rebooted or repaired.

🟢

If Mitigated

Limited impact with proper network segmentation and access controls, potentially only causing temporary service disruption.

🌐 Internet-Facing: HIGH - Lexmark devices often have web interfaces and network services exposed, making them accessible to internet-based attackers.

🏢 Internal Only: MEDIUM - Internal attackers or compromised internal systems could exploit this vulnerability to gain foothold in network segments.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Integer overflow vulnerabilities typically require specific knowledge of the affected code and memory layout to exploit reliably.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Firmware updates available through Lexmark support

Vendor Advisory: http://support.lexmark.com/index?page=content&id=TE920&locale=EN&userlocale=EN_US

Restart Required: Yes

Instructions:

1. Visit Lexmark support site with TE920 advisory. 2. Identify your specific device model. 3. Download latest firmware update. 4. Apply firmware update following Lexmark instructions. 5. Reboot device after update completes.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate Lexmark devices to separate VLAN with restricted access

Disable Unnecessary Services

all

Turn off unused network services and protocols on Lexmark devices

🧯 If You Can't Patch

Implement strict network access controls allowing only authorized IP addresses to communicate with Lexmark devices
Monitor network traffic to Lexmark devices for anomalous patterns and implement intrusion detection rules

🔍 How to Verify

Check if Vulnerable:

Check device firmware version against Lexmark's patched versions list in advisory TE920

Check Version:

Access Lexmark device web interface > Settings > Device Information > Firmware Version

Verify Fix Applied:

Confirm firmware version has been updated to latest available version from Lexmark

📡 Detection & Monitoring

Log Indicators:

Device crash/reboot logs
Unusual network service access attempts
Firmware modification attempts

Network Indicators:

Unusual traffic patterns to printer ports
Exploit-like payloads sent to Lexmark devices
Unexpected outbound connections from printers

SIEM Query:

source="lexmark-printer" AND (event_type="crash" OR event_type="reboot" OR port_scan_detected=true)

📊 Metadata

CVE ID: CVE-2019-9930

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-190

Published: August 28, 2019

Last Updated: November 21, 2024

🔗 References

http://support.lexmark.com/index?page=content&id=TE920&locale=EN&userlocale=EN_US Vendor Advisory
http://support.lexmark.com/index?page=content&id=TE920&locale=EN&userlocale=EN_US Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

6500e Firmware by Lexmark

C734 Firmware by Lexmark

C736 Firmware by Lexmark

C746 Firmware by Lexmark

C748 Firmware by Lexmark

C792 Firmware by Lexmark

C925 Firmware by Lexmark

C950 Firmware by Lexmark

Cs31x Firmware by Lexmark

Cs41x Firmware by Lexmark

Cs748 Firmware by Lexmark

Cs796 Firmware by Lexmark

Cx310 Firmware by Lexmark

E46x Firmware by Lexmark

M1140\+ Firmware by Lexmark

M1145 Firmware by Lexmark

M3150dn Firmware by Lexmark

M5155 Firmware by Lexmark

M5163 Firmware by Lexmark

M5163dn Firmware by Lexmark

M5170 Firmware by Lexmark

Ms310 Firmware by Lexmark

Ms312 Firmware by Lexmark

Ms315 Firmware by Lexmark

Ms317 Firmware by Lexmark

Ms410 Firmware by Lexmark

Ms415 Firmware by Lexmark

Ms417 Firmware by Lexmark

Ms51x Firmware by Lexmark

Ms610dn Firmware by Lexmark

Ms617 Firmware by Lexmark

Ms71x Firmware by Lexmark

Ms810 Firmware by Lexmark

Ms810de Firmware by Lexmark

Ms811 Firmware by Lexmark

Ms812 Firmware by Lexmark

Ms812de Firmware by Lexmark

Ms817 Firmware by Lexmark

Ms818 Firmware by Lexmark

Ms91x Firmware by Lexmark

Mx31x Firmware by Lexmark

Mx410 Firmware by Lexmark

Mx510 Firmware by Lexmark

Mx511 Firmware by Lexmark

Mx610 Firmware by Lexmark

Mx611 Firmware by Lexmark

Mx6500e Firmware by Lexmark

Mx71x Firmware by Lexmark

Mx81x Firmware by Lexmark

Mx91x Firmware by Lexmark

T65x Firmware by Lexmark

W850 Firmware by Lexmark

X46x Firmware by Lexmark

X548 Firmware by Lexmark

X65x Firmware by Lexmark

X73x Firmware by Lexmark

X74x Firmware by Lexmark

X792 Firmware by Lexmark

X86x Firmware by Lexmark

X925 Firmware by Lexmark

X95x Firmware by Lexmark

Xm1135 Firmware by Lexmark

Xm3150 Firmware by Lexmark

Xm51xx Firmware by Lexmark

Xm71xx Firmware by Lexmark

Xm91x Firmware by Lexmark

Xs548 Firmware by Lexmark

Xs748 Firmware by Lexmark

Xs79x Firmware by Lexmark

Xs925 Firmware by Lexmark

Xs95x Firmware by Lexmark