CVE-2025-65078 | THREATINT

Description

An untrusted search path vulnerability has been identified in the Embedded Solutions Framework in various Lexmark devices. This vulnerability can be leveraged by an attacker to execute arbitrary code.

PUBLISHED Reserved 2025-11-17 | Published 2026-02-03 | Updated 2026-02-06 | Assigner Lexmark

CRITICAL: 9.3CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-426 Untrusted Search Path

Product status

Default status

unaffected

Any version before 250.210

affected

Default status

unaffected

Any version before 230.507

affected

References

www.lexmark.com/...security/lexmark-security-advisories.html

cve.org (CVE-2025-65078)

nvd.nist.gov (CVE-2025-65078)

Download JSON