CVE-2017-2743

EPSS 0.4%
Published 23.01.2018 16:29:01
Last modified 21.11.2024 03:24:05
Source hp-security-alert@hp.com
Teams watchlist Login
Open Login

HP has identified a potential security vulnerability with HP Enterprise LaserJet Printers and MFPs, HP OfficeJet Enterprise Color Printers and MFP, HP PageWide Color Printers and MPS before 2308214_000901, 2308214_000900, and other firmware versions. The vulnerability could be exploited to perform a cross site scripting (XSS) attack.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Hp ≫ Cc419a Firmware Version < 2308214_000901

Hp ≫ Cc419a Version-

Hp ≫ Cc420a Firmware Version < 2308214_000901

Hp ≫ Cc420a Version-

Hp ≫ Cc421a Firmware Version < 2308214_000901

Hp ≫ Cc421a Version-

Hp ≫ Ce709a Firmware Version < 2308214_000900

Hp ≫ Ce709a Version-

Hp ≫ Ce708a Firmware Version < 2308214_000900

Hp ≫ Ce708a Version-

Hp ≫ Ce707a Firmware Version < 2308214_000900

Hp ≫ Ce707a Version-

Hp ≫ Ce503a Firmware Version < 2308214_000904

Hp ≫ Ce503a Version-

Hp ≫ Ce504a Firmware Version < 2308214_000904

Hp ≫ Ce504a Version-

Hp ≫ Ce738a Firmware Version < 2308214_000904

Hp ≫ Ce738a Version-

Hp ≫ Ce989a Firmware Version < 2308214_000926

Hp ≫ Ce989a Version-

Hp ≫ Ce990a Firmware Version < 2308214_000926

Hp ≫ Ce990a Version-

Hp ≫ Ce991a Firmware Version < 2308214_000926

Hp ≫ Ce991a Version-

Hp ≫ Ce992a Firmware Version < 2308214_000926

Hp ≫ Ce992a Version-

Hp ≫ Ce993a Firmware Version < 2308214_000926

Hp ≫ Ce993a Version-

Hp ≫ Ce994a Firmware Version < 2308214_000926

Hp ≫ Ce994a Version-

Hp ≫ Ce995a Firmware Version < 2308214_000926

Hp ≫ Ce995a Version-

Hp ≫ Ce996a Firmware Version < 2308214_000926

Hp ≫ Ce996a Version-

Hp ≫ Cf081a Firmware Version < 2308214_000927

Hp ≫ Cf081a Version-

Hp ≫ Cf082a Firmware Version < 2308214_000927

Hp ≫ Cf082a Version-

Hp ≫ Cf083a Firmware Version < 2308214_000927

Hp ≫ Cf083a Version-

Hp ≫ L2717a Firmware Version < 2308214_000903

Hp ≫ L2717a Version-

Hp ≫ Cd644a Firmware Version < 2308214_000925

Hp ≫ Cd644a Version-

Hp ≫ Cd645a Firmware Version < 2308214_000925

Hp ≫ Cd644a Version-

Hp ≫ Cf116a Firmware Version < 2308214_000913

Hp ≫ Cf116a Version-

Hp ≫ Cf117a Firmware Version < 2308214_000913

Hp ≫ Cf117a Version-

Hp ≫ Cc522a Firmware Version < 2308214_000932

Hp ≫ Cc522a Version-

Hp ≫ Cc523a Firmware Version < 2308214_000932

Hp ≫ Cc523a Version-

Hp ≫ Cc524a Firmware Version < 2308214_000932

Hp ≫ Cc524a Version-

Hp ≫ Cf235a Firmware Version < 2308214_000922

Hp ≫ Cf235a Version-

Hp ≫ Cf236a Firmware Version < 2308214_000922

Hp ≫ Cf236a Version-

Hp ≫ Cf238a Firmware Version < 2308214_000922

Hp ≫ Cf238a Version-

Hp ≫ Cd646a Firmware Version < 2308214_000925

Hp ≫ Cd646a Version-

Hp ≫ Cf118a Firmware Version < 2308214_000913

Hp ≫ Cf118a Version-

Hp ≫ Cf066a Firmware Version < 2308214_000921

Hp ≫ Cf066a Version-

Hp ≫ Cf067a Firmware Version < 2308214_000921

Hp ≫ Cf067a Version-

Hp ≫ Cf068a Firmware Version < 2308214_000921

Hp ≫ Cf068a Version-

Hp ≫ Cf069a Firmware Version < 2308214_000921

Hp ≫ Cf069a Version-

Hp ≫ D3l08a Firmware Version < 2308214_000931

Hp ≫ D3l08a Version-

Hp ≫ D3l09a Firmware Version < 2308214_000931

Hp ≫ D3l09a Version-

Hp ≫ D3l10a Firmware Version < 2308214_000931

Hp ≫ D3l10a Version-

Hp ≫ A2w77a Firmware Version < 2308214_000930

Hp ≫ A2w77a Version-

Hp ≫ A2w78a Firmware Version < 2308214_000930

Hp ≫ A2w78a Version-

Hp ≫ A2w79a Firmware Version < 2308214_000930

Hp ≫ A2w79a Version-

Hp ≫ A2w76a Firmware Version < 2308214_000928

Hp ≫ A2w76a Version-

Hp ≫ A2w75a Firmware Version < 2308214_000928

Hp ≫ A2w75a Version-

Hp ≫ D7p70a Firmware Version < 2308214_000928

Hp ≫ D7p70a Version-

Hp ≫ D7p71a Firmware Version < 2308214_000928

Hp ≫ D7p71a Version-

Hp ≫ Cf367a Firmware Version < 2308214_000916

Hp ≫ Cf367a Version-

Hp ≫ Cz244a Firmware Version < 2308214_000920

Hp ≫ Cz244a Version-

Hp ≫ Cz245a Firmware Version < 2308214_000920

Hp ≫ Cz245a Version-

Hp ≫ B5l04a Firmware Version < 2308214_000902

Hp ≫ B5l04a Version-

Hp ≫ B5l05a Firmware Version < 2308214_000902

Hp ≫ B5l05a Version-

Hp ≫ B5l07a Firmware Version < 2308214_000902

Hp ≫ B5l07a Version-

Hp ≫ C2s11a Firmware Version < 2308214_000906

Hp ≫ C2s11a Version-

Hp ≫ C2s12a Firmware Version < 2308214_000906

Hp ≫ C2s12a Version-

Hp ≫ J7x28a Firmware Version < _2308214_000912

Hp ≫ J7x28a Version-

Hp ≫ B5l23a Firmware Version < 2308214_000907

Hp ≫ B5l23a Version-

Hp ≫ B5l24a Firmware Version < 2308214_000907

Hp ≫ B5l24a Version-

Hp ≫ B5l25a Firmware Version < 2308214_000907

Hp ≫ B5l25a Version-

Hp ≫ B5l26a Firmware Version < 2308214_000907

Hp ≫ B5l26a Version-

Hp ≫ E6b67a Firmware Version < 2308214_000908

Hp ≫ E6b67a Version-

Hp ≫ E6b68a Firmware Version < 2308214_000908

Hp ≫ E6b68a Version-

Hp ≫ E6b69a Firmware Version < 2308214_000908

Hp ≫ E6b69a Version-

Hp ≫ E6b70a Firmware Version < 2308214_000908

Hp ≫ E6b70a Version-

Hp ≫ E6b71a Firmware Version < _2308214_000908

Hp ≫ E6b71a Version-

Hp ≫ E6b72a Firmware Version < 2308214_000908

Hp ≫ E6b72a Version-

Hp ≫ E6b73a Firmware Version < 2308214_000908

Hp ≫ E6b73a Version-

Hp ≫ B3g85a Firmware Version < 2308214_000912

Hp ≫ B3g85a Version-

Hp ≫ B5l46a Firmware Version < 2308214_000909

Hp ≫ B5l46a Version-

Hp ≫ B5l47a Firmware Version < 2308214_000909

Hp ≫ B5l47a Version-

Hp ≫ B5l48a Firmware Version < 2308214_000909

Hp ≫ B5l48a Version-

Hp ≫ 2a68a Firmware Version < 2308214_000911

Hp ≫ 2a68a Version-

Hp ≫ 2a69a Firmware Version < 2308214_000911

Hp ≫ 2a69a Version-

Hp ≫ 2a70a Firmware Version < 2308214_000911

Hp ≫ 2a70a Version-

Hp ≫ 2a71a Firmware Version < 2308214_000911

Hp ≫ 2a71a Version-

Hp ≫ F2a76a Firmware Version < 2308214_000905

Hp ≫ F2a76a Version-

Hp ≫ F2a77a Firmware Version < 2308214_000905

Hp ≫ F2a77a Version-

Hp ≫ F2a81a Firmware Version < 2308214_000905

Hp ≫ F2a81a Version-

Hp ≫ G1w46a Firmware Version < 2308214_000910

Hp ≫ G1w46a Version-

Hp ≫ G1w46v Firmware Version < 2308214_000910

Hp ≫ G1w46v Version-

Hp ≫ G1w47a Firmware Version < 2308214_000910

Hp ≫ G1w47a Version-

Hp ≫ G1w47v Firmware Version < 2308214_000910

Hp ≫ G1w47v Version-

Hp ≫ L3u44a Firmware Version < 2308214_000910

Hp ≫ L3u44a Version-

Hp ≫ G1w40a Firmware Version < 2308214_000923

Hp ≫ G1w40a Version-

Hp ≫ G1w39a Firmware Version < 2308214_000923

Hp ≫ G1w39a Version-

Hp ≫ G1w41a Firmware Version < 2308214_000923

Hp ≫ G1w41a Version-

Hp ≫ L3u43a Firmware Version < 2308214_000923

Hp ≫ L3u43a Version-

Hp ≫ L3u42a Firmware Version < 2308214_000923

Hp ≫ L3u42a Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.4%	0.579

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.1	2.8	2.7	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

https://support.hp.com/us-en/document/c05541569

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2017-2743

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2017-2743

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2017-2743

EUVD