CVE-2025-4044

Summary

Improper Restriction of XML External Entity Reference in various Lexmark printer drivers for Windows allows attacker to disclose sensitive information to an arbitrary URL.

Affected Software

VendorProductVersion RangeStatus
LexmarkUniversal Print Driver0 < 3.0.6.0affected
LexmarkPrinter Software G20 < 2.17.0.0affected

Weaknesses

  • CWE-611: CWE-611 Improper Restriction of XML External Entity Reference

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References