CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
Percentile
24.8%
A potential security vulnerability has been identified for certain HP printers and MFPs that would allow redirection page Cross-Site Scripting in a client’s browser by clicking on a third-party malicious link.
Vendor | Product | Version | CPE |
---|---|---|---|
hp | futuresmart_3 | * | cpe:2.3:o:hp:futuresmart_3:*:*:*:*:*:*:*:* |
hp | laserjet_cm4540_mfp_cc419a | - | cpe:2.3:h:hp:laserjet_cm4540_mfp_cc419a:-:*:*:*:*:*:*:* |
hp | laserjet_cm4540_mfp_cc420a | - | cpe:2.3:h:hp:laserjet_cm4540_mfp_cc420a:-:*:*:*:*:*:*:* |
hp | laserjet_cm4540_mfp_cc421a | - | cpe:2.3:h:hp:laserjet_cm4540_mfp_cc421a:-:*:*:*:*:*:*:* |
hp | futuresmart_4 | * | cpe:2.3:o:hp:futuresmart_4:*:*:*:*:*:*:*:* |
hp | laserjet_enterprise_flow_mfp_m880z_a2w75a | - | cpe:2.3:h:hp:laserjet_enterprise_flow_mfp_m880z_a2w75a:-:*:*:*:*:*:*:* |
hp | laserjet_enterprise_flow_mfp_m880z_a2w76a | - | cpe:2.3:h:hp:laserjet_enterprise_flow_mfp_m880z_a2w76a:-:*:*:*:*:*:*:* |
hp | laserjet_enterprise_flow_mfp_m880z_d7p70a | - | cpe:2.3:h:hp:laserjet_enterprise_flow_mfp_m880z_d7p70a:-:*:*:*:*:*:*:* |
hp | laserjet_enterprise_flow_mfp_m880z_d7p71a | - | cpe:2.3:h:hp:laserjet_enterprise_flow_mfp_m880z_d7p71a:-:*:*:*:*:*:*:* |
hp | laserjet_enterprise_flow_mfp_m880z_l3u51a | - | cpe:2.3:h:hp:laserjet_enterprise_flow_mfp_m880z_l3u51a:-:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
Percentile
24.8%