If you are using a Lexmark printer, you should make sure that you have the latest firmware installed. Lexmark has announced vulnerabilities affecting many of the company’s printers.
Lexmark is not aware of that described vulnerability (listed under CVE-2023-23560) is being used maliciously against Lexmark products, but proof-of-concept code has been publicly released.
A Server-Side Request Forgery (SSRF) vulnerability has been found in the Web Services feature of recent Lexmark devices. This vulnerability could be exploited by an attacker to run arbitrary code on the device.
Meanwhile, a workaround can also be performed to mitigate it. Disabling the Web Services service on the printer (TCP port 65002) blocks the opportunity for exploitation of this vulnerability. The port can be blocked as follows:
»Settings«->«Network/Ports«-> »TCP/IP«->
Deactivate »TCP/IP Port Access«, then »TCP 65002 ( WSD Print Service )« and save.
Transparency: This article contains affiliate links. Clicking on it will take you directly to the provider. If you decide to make a purchase there, we will receive a small commission. Nothing changes in the price for you. Partner links have no influence on our reporting.
