7.8
CVE-2002-1796
- EPSS 0.41%
- Veröffentlicht 31.12.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:59:59
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
ChaiVM EZloader for HP color LaserJet 4500 and 4550 and HP LaserJet 4100 and 8150 does not properly verify JAR signatures for new services, which allows local users to load unauthorized Chai services.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Hp ≫ Chaivm Ezloader Version-
Hp ≫ Laserjet 4100 Version-
Hp ≫ Laserjet 4500 Version-
Hp ≫ Laserjet 4550 Version-
Hp ≫ Laserjet 8150 Version-
Hp ≫ Laserjet 4500 Version-
Hp ≫ Laserjet 4550 Version-
Hp ≫ Laserjet 8150 Version-
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.41% | 0.326 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-347 Improper Verification of Cryptographic Signature
The product does not verify, or incorrectly verifies, the cryptographic signature for data.
http://online.securityfocus.com/advisories/4317
http://www.iss.net/security_center/static/9695.php
http://www.phenoelit.de/stuff/HP_Chai.txt
http://www.securityfocus.com/archive/1/284648
http://www.securityfocus.com/bid/5334