QwikSec

Security Database

CVE

CWE

Training

CVE-2021-35449

Published: Jul 19, 2021

Modified: Aug 4, 2024

PUBLISHED

Description

The Lexmark Universal Print Driver version 2.15.1.0 and below, G2 driver 2.7.1.0 and below, G3 driver 3.2.0.0 and below, and G4 driver 4.2.1.0 and below are affected by a privilege escalation vulnerability. A standard low priviliged user can use the driver to execute a DLL of their choosing during the add printer process, resulting in escalation of privileges to SYSTEM.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://support.lexmark.com/alerts/

x_refsource_MISC

https://raw.githubusercontent.com/jacob-baines/vuln_disclosure/main/vuln_2021_02.txt

x_refsource_MISC

http://packetstormsecurity.com/files/163811/Lexmark-Driver-Privilege-Escalation.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.