CVE-2019-993528.08.2019, 16:15Various Lexmark products have Incorrect Access Control (issue 2 of 2).EnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST5.3 MEDIUMNETWORKLOWNONECVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NmitreCNA------CVEADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 42%Common Weakness EnumerationCWE-306 - Missing Authentication for Critical FunctionThe product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.Referenceshttp://support.lexmark.com/index?page=content&id=TE924&locale=EN&userlocale=EN_UShttp://support.lexmark.com/index?page=content&id=TE924&locale=EN&userlocale=EN_US