CVE-2014-7890

EPSS 30.08%
Published 09.03.2015 17:59:02
Last modified 12.04.2025 10:46:40
Source hp-security-alert@hp.com
Teams watchlist Login
Open Login

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSToneIndicator.ocx for POS keyboards and POS keyboards with MSR, aka ZDI-CAN-2510.

Affected products Warnungen 0 Metrics 2 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Hp ≫ Ole Point Of Sale Driver Version <= 1.13.001

Hp ≫ Pos Keyboard Fk221aa
Hp ≫ Pos Keyboard With Msr Fk218aa

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	30.08%	0.965

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://www.securitytracker.com/id/1031840

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04583185

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2014-7890

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-7890

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-7890

EUVD