CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:N/A:P
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
AI Score
Confidence
High
EPSS
Percentile
30.6%
For the printers listed a maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device.
Vendor | Product | Version | CPE |
---|---|---|---|
hp | d9l63a_firmware | * | cpe:2.3:o:hp:d9l63a_firmware:*:*:*:*:*:*:*:* |
hp | d9l63a | - | cpe:2.3:h:hp:d9l63a:-:*:*:*:*:*:*:* |
hp | d9l64a_firmware | * | cpe:2.3:o:hp:d9l64a_firmware:*:*:*:*:*:*:*:* |
hp | d9l64a | - | cpe:2.3:h:hp:d9l64a:-:*:*:*:*:*:*:* |
hp | t0g70a_firmware | * | cpe:2.3:o:hp:t0g70a_firmware:*:*:*:*:*:*:*:* |
hp | t0g70a | - | cpe:2.3:h:hp:t0g70a:-:*:*:*:*:*:*:* |
hp | j3p65a_firmware | * | cpe:2.3:o:hp:j3p65a_firmware:*:*:*:*:*:*:*:* |
hp | j3p65a | - | cpe:2.3:h:hp:j3p65a:-:*:*:*:*:*:*:* |
hp | j3p68a_firmware | * | cpe:2.3:o:hp:j3p68a_firmware:*:*:*:*:*:*:*:* |
hp | j3p68a | - | cpe:2.3:h:hp:j3p68a:-:*:*:*:*:*:*:* |
[
{
"product": "HP OfficeJet Pro 8210 Printer series,HP PageWide 352dw Printer,HP PageWide 377dw Multifunction Printer,HP PageWide Managed P55250dw Printer series,HP PageWide Managed P57750dw Multifunction Printer series,HP PageWide Managed P52750dw Multifunction Printer,HP PageWide Pro 452dn Printer series,HP PageWide Pro 452dw Printer series,HP PageWide Pro 477dn Multifunction Printer series,HP PageWide Pro 477dw Multifunction Printer series,HP PageWide Pro 552dw Printer series,HP PageWide Pro 577dw Multifunction Printer series",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "001.1937C or later For all models"
}
]
}
]
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:N/A:P
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
AI Score
Confidence
High
EPSS
Percentile
30.6%