A critical security vulnerability, tracked as CVE-2025-1127, has been identified in the embedded web servers of numerous Lexmark printer models, putting enterprise and small business environments at risk.
The flaw, which combines a path traversal bug (CWE-22) with a concurrent execution (race condition) issue (CWE-362), allows attackers to execute arbitrary code and modify any data on the affected device’s filesystem.
https://cyberpress.org/lexmark-printer-flaw/