Vulnerability CVE-2023-40239
Published: 2023-09-01

Description:
Certain Lexmark devices (such as CS310) before 2023-08-25 allow XXE attacks, leading to information disclosure. The fixed firmware version is LW80.*.P246, i.e., '*' indicates that the full version specification varies across product model family, but firmware level P246 (or higher) is required to remediate the vulnerability.

 References:
https://publications.lexmark.com/publications/security-alerts/CVE-2023-40239.pdf
Copyright 2026, cxsecurity.com

 

Back to Top