CVE-2024-11347: Integer Overflow
First published: Thu Feb 13 2025(Updated: )
Integer Overflow or Wraparound vulnerability in Lexmark International CX, XC, CS, et. Al. (Postscript interpreter modules) allows Forced Integer Overflow.The vulnerability can be leveraged by an attacker to execute arbitrary code as an unprivileged user.
Credit: 7bc73191-a2b6-4c63-9918-753964601853
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Lexmark CX Series |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-11347?
CVE-2024-11347 is classified as a critical vulnerability due to the potential for arbitrary code execution.
How do I fix CVE-2024-11347?
To mitigate CVE-2024-11347, users should update their Lexmark devices to the latest firmware provided by Lexmark.
What products are affected by CVE-2024-11347?
CVE-2024-11347 affects Lexmark CX, XC, and CS series printers that utilize Postscript interpreter modules.
Can CVE-2024-11347 be exploited remotely?
Yes, CVE-2024-11347 can potentially be exploited remotely if the affected printer is accessible over a network.
What type of attack can CVE-2024-11347 facilitate?
CVE-2024-11347 can facilitate arbitrary code execution attacks, allowing an attacker to run unauthorized commands as an unprivileged user.
- collector/nvd-api
- source/NVD
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/references
- agent/author
- agent/source
- agent/first-publish-date
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- vendor/lexmark
- canonical/lexmark cx series