CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
Percentile
24.8%
A potential security vulnerability has been identified for certain HP printers and MFPs that would allow redirection page Cross-Site Scripting in a client’s browser by clicking on a third-party malicious link.
Vendor | Product | Version | CPE |
---|---|---|---|
hp | futuresmart_3 | * | cpe:2.3:o:hp:futuresmart_3:*:*:*:*:*:*:*:* |
hp | laserjet_cm4540_mfp_cc419a | - | cpe:2.3:h:hp:laserjet_cm4540_mfp_cc419a:-:*:*:*:*:*:*:* |
hp | laserjet_cm4540_mfp_cc420a | - | cpe:2.3:h:hp:laserjet_cm4540_mfp_cc420a:-:*:*:*:*:*:*:* |
hp | laserjet_cm4540_mfp_cc421a | - | cpe:2.3:h:hp:laserjet_cm4540_mfp_cc421a:-:*:*:*:*:*:*:* |
hp | futuresmart_4 | * | cpe:2.3:o:hp:futuresmart_4:*:*:*:*:*:*:*:* |
hp | laserjet_enterprise_flow_mfp_m880z_a2w75a | - | cpe:2.3:h:hp:laserjet_enterprise_flow_mfp_m880z_a2w75a:-:*:*:*:*:*:*:* |
hp | laserjet_enterprise_flow_mfp_m880z_a2w76a | - | cpe:2.3:h:hp:laserjet_enterprise_flow_mfp_m880z_a2w76a:-:*:*:*:*:*:*:* |
hp | laserjet_enterprise_flow_mfp_m880z_d7p70a | - | cpe:2.3:h:hp:laserjet_enterprise_flow_mfp_m880z_d7p70a:-:*:*:*:*:*:*:* |
hp | laserjet_enterprise_flow_mfp_m880z_d7p71a | - | cpe:2.3:h:hp:laserjet_enterprise_flow_mfp_m880z_d7p71a:-:*:*:*:*:*:*:* |
hp | laserjet_enterprise_flow_mfp_m880z_l3u51a | - | cpe:2.3:h:hp:laserjet_enterprise_flow_mfp_m880z_l3u51a:-:*:*:*:*:*:*:* |
[
{
"product": "HP Color LaserJet Managed Printers, HP Color LaserJet Enterprise Printers",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "before FS3: 2309025_582081"
},
{
"status": "affected",
"version": "before FS3: 2309025_582082"
},
{
"status": "affected",
"version": "before FS3: 2309025_582083"
},
{
"status": "affected",
"version": "before FS3: 2309025_582084"
},
{
"status": "affected",
"version": "before FS3: 2309025_582085"
},
{
"status": "affected",
"version": "before FS3: 2309025_582086"
},
{
"status": "affected",
"version": "before FS3: 2309025_582087"
},
{
"status": "affected",
"version": "before FS3: 2309025_582088"
},
{
"status": "affected",
"version": "before FS3: 2309025_582089"
},
{
"status": "affected",
"version": "before FS3: 2309025_582091"
},
{
"status": "affected",
"version": "before FS3: 2309025_582092"
},
{
"status": "affected",
"version": "before FS3: 2309025_582093"
},
{
"status": "affected",
"version": "before FS3: 2309025_582096"
},
{
"status": "affected",
"version": "before FS3: 2309025_582097"
},
{
"status": "affected",
"version": "before FS3: 2309025_582098"
},
{
"status": "affected",
"version": "before FS3: 2309025_582099"
},
{
"status": "affected",
"version": "before FS3: 2309025_582101"
},
{
"status": "affected",
"version": "before FS3: 2309025_582102"
},
{
"status": "affected",
"version": "before FS3: 2309025_582103"
},
{
"status": "affected",
"version": "before FS3: 2309025_582104"
},
{
"status": "affected",
"version": "before FS3: 2309025_582105"
},
{
"status": "affected",
"version": "before FS3: 2309025_582106"
},
{
"status": "affected",
"version": "before FS3: 2309025_582108"
},
{
"status": "affected",
"version": "before FS3: 2309025_582110"
},
{
"status": "affected",
"version": "before FS3: 2309025_582112"
},
{
"status": "affected",
"version": "before FS3: 2309025_582113"
},
{
"status": "affected",
"version": "before FS3: 2309025_582114"
},
{
"status": "affected",
"version": "before FS4: 2410028_055002"
},
{
"status": "affected",
"version": "before FS4: 2410028_055003"
},
{
"status": "affected",
"version": "before FS4: 2410028_055004"
},
{
"status": "affected",
"version": "before FS4: 2410028_055005"
},
{
"status": "affected",
"version": "before FS4: 2410028_055006"
},
{
"status": "affected",
"version": "before FS4: 2410028_055007"
},
{
"status": "affected",
"version": "before FS4: 2410028_055008"
},
{
"status": "affected",
"version": "..."
}
]
}
]
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
Percentile
24.8%