by Printer maker Lexmark this week released the latest version of its firmware to address a high-risk vulnerability affecting hundreds of models that could allow hackers to execute code remotely. The vulnerability numbered CVE-2023-23560 occurs in the web service function of the printer firmware, which is a server-side request forgery (SSRF) vulnerability. A successful attack may allow hackers to remotely execute arbitrary code. The CVSS 3.1 risk score of this vulnerability is as high as 9.0.
