Lucene search

[email protected]CVE-2011-4785

HistoryJan 10, 2012 - 11:55 a.m.

CVE-2011-4785

2012-01-1011:55:05

CWE-200

[email protected]

web.nvd.nist.gov

chaisoe

web server

vulnerability

directory traversal

hp laserjet

remote attack

arbitrary files

firmware

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.1%

JSON

Directory traversal vulnerability in the HP-ChaiSOE/1.0 web server on the HP LaserJet P3015 printer with firmware before 07.080.3, LaserJet 4650 printer with firmware 07.006.0, and LaserJet 2430 printer with firmware 08.113.0_I35128 allows remote attackers to read arbitrary files via unspecified vectors, a different vulnerability than CVE-2008-4419.

Affected configurations

NVD

Node

hphp-chaisoeMatch1.0

AND

hplaserjet_2430Match08.113.0_i35128

hplaserjet_4650Match07.006.0

hplaserjet_p3015Range≤07.080

CPENameOperatorVersion
hp:hp-chaisoehp hp-chaisoeeq1.0

CPE	Name	Operator	Version
hp:hp-chaisoe	hp hp-chaisoe	eq	1.0

References

archives.neohapsis.com/archives/fulldisclosure/2012-01/0116.html

osvdb.org/78224

secunia.com/advisories/47457

www.securityfocus.com/archive/1/521160

www.securityfocus.com/archive/1/521165

www.securityfocus.com/bid/51329

exchange.xforce.ibmcloud.com/vulnerabilities/72227

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.1%

JSON

Related for CVE-2011-4785

prion2 nvd2 securityvulns5 cvelist2 hp2 nessus1 cve1