CVE-2025-4044HIGH 8.2EPSS p3.6%

CVE-2025-4044CVE-2025-4044

Description

Improper Restriction of XML External Entity Reference in various Lexmark printer drivers for Windows allows attacker to disclose sensitive information to an arbitrary URL.

Scoring

CVSS 3.18.2 (HIGH)
VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
EPSS0.14% probability of exploitation · percentile 3.6% · 2026-06-18T12:00:27Z
Published2025-08-19
Last modified2026-04-15

Underlying weaknesses· 1

CWE-611

References

  1. https://www.lexmark.com/en_us/solutions/security/lexmark-security-advisories.html

1

TypeTargetConfidenceTier
WeaknessImproper Restriction of XML External Entity Referencecwe-6110%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-1126
CVE
CVE-2025-4046
CVE
CVE-2025-21224
CVE
CVE-2025-1268
CVE
CVE-2025-3078
CVE
CVE-2025-3079
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.