Home

Description

A missing authorization vulnerability in Lexmark Cloud Services badge management allows attacker to reassign badges within their organization

PUBLISHED Reserved 2025-04-28 | Published 2025-08-19 | Updated 2025-08-20 | Assigner Lexmark




HIGH: 8.5CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Problem types

CWE-862 Missing Authorization

Product status

Default status
unaffected

Any version
affected

References

www.lexmark.com/...security/lexmark-security-advisories.html

cve.org (CVE-2025-4046)

nvd.nist.gov (CVE-2025-4046)

Download JSON