CVE-2021-44737

Q: What is the severity of CVE-2021-44737?

CVE-2021-44737 has a CVSS score of 8.8 (HIGH). This CVE describes a PJL directory traversal vulnerability in Lexmark printers and multifunction devices that allows attackers to overwrite internal configuration files. The vulnerability affects Lexmark devices through December 7, 2021, potentially enabling unauthorized configuration changes or device compromise.

8.8 HIGH

📋 TL;DR

This CVE describes a PJL directory traversal vulnerability in Lexmark printers and multifunction devices that allows attackers to overwrite internal configuration files. The vulnerability affects Lexmark devices through December 7, 2021, potentially enabling unauthorized configuration changes or device compromise.

💻 Affected Systems

Products:

Lexmark printers
Lexmark multifunction devices

Versions: All versions through 2021-12-07

Operating Systems: Embedded printer firmware

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with PJL (Printer Job Language) enabled, which is typically enabled by default.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete device takeover, persistent backdoor installation, or device bricking through malicious configuration file overwrites.

🟠

Likely Case

Unauthorized configuration changes, service disruption, or credential theft from configuration files.

🟢

If Mitigated

Limited impact with proper network segmentation and access controls preventing unauthorized PJL access.

🌐 Internet-Facing: HIGH - Lexmark devices exposed to the internet are directly vulnerable to exploitation.

🏢 Internal Only: MEDIUM - Internal attackers or compromised internal systems could exploit this vulnerability.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires network access to the device's PJL port (typically 9100/tcp).

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Firmware updates released after 2021-12-07

Vendor Advisory: https://support.lexmark.com/alerts/

Restart Required: Yes

Instructions:

1. Check Lexmark support site for your specific device model. 2. Download latest firmware. 3. Apply firmware update following manufacturer instructions. 4. Verify update completed successfully.

🔧 Temporary Workarounds

Network Access Control

all

Restrict access to PJL port (9100/tcp) to authorized systems only

firewall rules to block 9100/tcp from untrusted networks

Disable PJL

all

Disable PJL protocol if not required for business operations

Device configuration: Disable PJL in printer settings

🧯 If You Can't Patch

Segment printers on isolated network VLAN
Implement strict firewall rules blocking external access to printer ports

🔍 How to Verify

Check if Vulnerable:

Check device firmware version date - if before 2021-12-07, likely vulnerable. Test PJL access to port 9100.

Check Version:

Check printer web interface or control panel for firmware version/date

Verify Fix Applied:

Verify firmware version is post-2021-12-07. Test that directory traversal attempts via PJL are blocked.

📡 Detection & Monitoring

Log Indicators:

Unusual PJL commands in printer logs
Configuration file modification events
Multiple failed PJL access attempts

Network Indicators:

Traffic to printer port 9100/tcp from unusual sources
PJL commands containing directory traversal patterns (../)

SIEM Query:

source_port:9100 AND (payload_contains:"../" OR payload_contains:"..\\")

📊 Metadata

CVE ID: CVE-2021-44737

CVSS v3 Score: 8.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-22

Published: January 20, 2022

Last Updated: November 21, 2024

🔗 References

https://support.lexmark.com/alerts/ Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-22-333/ Third Party Advisory,VDB Entry
https://support.lexmark.com/alerts/ Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-22-333/ Third Party Advisory,VDB Entry

📋 TL;DR

💻 Affected Systems

📦 What is this software?

6500e Firmware by Lexmark

B2236 Firmware by Lexmark

B2338 Firmware by Lexmark

B2442 Firmware by Lexmark

B2546 Firmware by Lexmark

B2650 Firmware by Lexmark

B2865 Firmware by Lexmark

B3340 Firmware by Lexmark

B3442 Firmware by Lexmark

C2132 Firmware by Lexmark

C2240 Firmware by Lexmark

C2325 Firmware by Lexmark

C2326 Firmware by Lexmark

C2425 Firmware by Lexmark

C2535 Firmware by Lexmark

C3224 Firmware by Lexmark

C3326 Firmware by Lexmark

C3426 Firmware by Lexmark

C4150 Firmware by Lexmark

C6160 Firmware by Lexmark

C734 Firmware by Lexmark

C736 Firmware by Lexmark

C746 Firmware by Lexmark

C748 Firmware by Lexmark

C792 Firmware by Lexmark

C9235 Firmware by Lexmark

C925 Firmware by Lexmark

C950 Firmware by Lexmark

Cs310 Firmware by Lexmark

Cs317 Firmware by Lexmark

Cs331 Firmware by Lexmark

Cs410 Firmware by Lexmark

Cs417 Firmware by Lexmark

Cs421 Firmware by Lexmark

Cs431 Firmware by Lexmark

Cs439 Firmware by Lexmark

Cs510 Firmware by Lexmark

Cs517 Firmware by Lexmark

Cs521 Firmware by Lexmark

Cs622 Firmware by Lexmark

Cs720 Firmware by Lexmark

Cs725 Firmware by Lexmark

Cs727 Firmware by Lexmark

Cs728 Firmware by Lexmark

Cs748 Firmware by Lexmark

Cs796 Firmware by Lexmark

Cs820 Firmware by Lexmark

Cs827 Firmware by Lexmark

Cs827 Firmware by Lexmark

Cs921 Firmware by Lexmark

Cs923 Firmware by Lexmark

Cs927 Firmware by Lexmark

Cx310 Firmware by Lexmark

Cx317 Firmware by Lexmark

Cx331 Firmware by Lexmark

Cx410 Firmware by Lexmark

Cx417 Firmware by Lexmark

Cx421 Firmware by Lexmark

Cx431 Firmware by Lexmark

Cx510 Firmware by Lexmark

Cx517 Firmware by Lexmark

Cx522 Firmware by Lexmark

Cx622 Firmware by Lexmark

Cx625 Firmware by Lexmark

Cx725 Firmware by Lexmark

Cx727 Firmware by Lexmark

Cx820 Firmware by Lexmark

Cx825 Firmware by Lexmark

Cx860 Firmware by Lexmark

Cx920 Firmware by Lexmark

Cx921 Firmware by Lexmark

Cx922 Firmware by Lexmark

Cx923 Firmware by Lexmark

Cx924 Firmware by Lexmark

E46x Firmware by Lexmark

M1140\+ Firmware by Lexmark

M1140\+ Firmware by Lexmark