CVE-2009-2684
- EPSS 4.06%
- Published 13.10.2009 10:30:00
- Last modified 09.04.2025 00:30:58
Multiple cross-site scripting (XSS) vulnerabilities in Jetdirect and the Embedded Web Server (EWS) on certain HP LaserJet and Color LaserJet printers, and HP Digital Senders, allow remote attackers to inject arbitrary web script or HTML via the (1) P...
CVE-2009-0940
- EPSS 0.84%
- Published 18.03.2009 21:00:00
- Last modified 09.04.2025 00:30:58
Multiple cross-site request forgery (CSRF) vulnerabilities in the HP Embedded Web Server (EWS) on HP LaserJet Printers, Edgeline Printers, and Digital Senders allow remote attackers to hijack the intranet connectivity of arbitrary users for requests ...
CVE-2009-0941
- EPSS 0.93%
- Published 18.03.2009 21:00:00
- Last modified 09.04.2025 00:30:58
The HP Embedded Web Server (EWS) on HP LaserJet Printers, Edgeline Printers, and Digital Senders has no management password by default, which makes it easier for remote attackers to obtain access.
CVE-2008-4419
- EPSS 0.66%
- Published 05.02.2009 00:30:00
- Last modified 09.04.2025 00:30:58
Directory traversal vulnerability in the HP JetDirect web administration interface in the HP-ChaiSOE 1.0 embedded web server on the LaserJet 9040mfp, LaserJet 9050mfp, and Color LaserJet 9500mfp before firmware 08.110.9; LaserJet 4345mfp and 9200C Di...