English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 146377 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.113096
Category:Web application abuses
Title:HP Printers XSS Vulnerability (Jan 2018)
Summary:HP has identified a potential security vulnerability with; certain HP printers. The vulnerability could be exploited to perform a cross-site scripting (XSS); attack.
Description:Summary:
HP has identified a potential security vulnerability with
certain HP printers. The vulnerability could be exploited to perform a cross-site scripting (XSS)
attack.

Affected Software/OS:
The following devices and firmware versions are affected:

Firmware versions through 2308214_000900: HP Color LaserJet CM4540 MFP

Firmware versions through 2308214_000899: HP Color LaserJet CP5525

Firmware versions through 2308214_000903: HP LaserJet Enterprise M4555 MFP

Firmware versions through 2308214_000925: HP LaserJet Enterprise 600 M601, HP LaserJet Enterprise 600 M602, HP LaserJet Enterprise 600 M603xh

Firmware versions through 2308214_000926: HP LaserJet Enterprise Color 500 M551 Series

Firmware versions through 2308214_000902: HP Scanjet Enterprise 8500 Document Capture Workstation

Firmware versions through 2308214_000924: HP LaserJet Enterprise 500 color MFP M575dn, HP LaserJet Enterprise color flow MFP M575c

Firmware versions through 2308214_000912: HP LaserJet Enterprise 500 MFP M525f, HP LaserJet Enterprise flow MFP M525c

Firmware versions through 2308214_000931: HP LaserJet Enterprise 700 color MFP M775 series

Firmware versions through 2308214_000921: HP LaserJet Enterprise 700 M712xh

Firmware versions through 2308214_000920: HP LaserJet Enterprise MFP M725

Firmware versions through 2308214_000930: HP Color LaserJet Enterprise M750

Firmware versions through 2308214_000929: HP LaserJet Enterprise 800 color M855

Firmware versions through 2308214_000927: HP LaserJet Enterprise 800 color MFP M880

Firmware versions through 2308214_000915: HP LaserJet Enterprise flow M830z MFP

Firmware versions through 2308214_000919: HP LaserJet Enterprise M806

Firmware versions through 2308124_000928: HP Color LaserJet Enterprise M651

Firmware versions through 2308214_000914: HP Color LaserJet M680

Firmware versions through 2308214_000901: HP OfficeJet Enterprise Color MFP X585

Firmware versions through 2308214_000905: HP OfficeJet Enterprise Color X555

Firmware versions through 2308214_000911: HP LaserJet Enterprise MFP M630, HP LaserJet Enterprise Flow MFP M630z

Firmware versions through 2308214_000906: HP Color LaserJet Enterprise M552, HP Color LaserJet Enterprise M553

Firmware versions through 2308214_000907: HP LaserJet Enterprise M604, HP LaserJet Enterprise M605, HP LaserJet Enterprise M606

Firmware versions through 2308214_000908: HP Color LaserJet Enterprise MFP M577

Firmware versions through 2308214_000910: HP LaserJet Enterprise M506

Firmware versions through 2308214_000904: HP LaserJet Enterprise M527

Firmware versions through 2308214_000909: HP PageWide Enterprise Color X556

Firmware versions through 2308214_000922: HP PageWide Enterprise Color MFP X586

Solution:
The following fixed versions exist:

Firmware version 2308214_000901 and above: HP Color LaserJet CM4540 MFP

Firmware version 2308214_000900 and above: HP Color LaserJet CP5525

Firmware version 2308214_000904 and above: HP LaserJet Enterprise M4555 MFP

Firmware version 2308214_000926 and above: HP LaserJet Enterprise 600 M601, HP LaserJet Enterprise 600 M602, HP LaserJet Enterprise 600 M603xh

Firmware version 2308214_000927 and above: HP LaserJet Enterprise Color 500 M551 Series

Firmware version 2308214_000903 and above: HP Scanjet Enterprise 8500 Document Capture Workstation

Firmware version 2308214_000925 and above: HP LaserJet Enterprise 500 color MFP M575dn, HP LaserJet Enterprise color flow MFP M575c

Firmware version 2308214_000913 and above: HP LaserJet Enterprise 500 MFP M525f, HP LaserJet Enterprise flow MFP M525c

Firmware version 2308214_000932 and above: HP LaserJet Enterprise 700 color MFP M775 series

Firmware version 2308214_000922: and above HP LaserJet Enterprise 700 M712xh

Firmware version 2308214_000921 and above: HP LaserJet Enterprise MFP M725

Firmware version 2308214_000931 and above: HP Color LaserJet Enterprise M750

Firmware version 2308214_000930 and above: HP LaserJet Enterprise 800 color M855

Firmware version 2308214_000928 and above: HP LaserJet Enterprise 800 color MFP M880

Firmware version 2308214_000916 and above: HP LaserJet Enterprise flow M830z MFP

Firmware version 2308214_000920 and above: HP LaserJet Enterprise M806

Firmware version 2308124_000929 and above: HP Color LaserJet Enterprise M651

Firmware version 2308214_000915 and above: HP Color LaserJet M680

Firmware version 2308214_000902 and above: HP OfficeJet Enterprise Color MFP X585

Firmware version 2308214_000906 and above: HP OfficeJet Enterprise Color X555

Firmware version 2308214_000912 and above: HP LaserJet Enterprise MFP M630, HP LaserJet Enterprise Flow MFP M630z

Firmware version 2308214_000907 and above: HP Color LaserJet Enterprise M552, HP Color LaserJet Enterprise M553

Firmware version 2308214_000908 and above: HP LaserJet Enterprise M604, HP LaserJet Enterprise M605, HP LaserJet Enterprise M606

Firmware version 2308214_000909 and above: HP Color LaserJet Enterprise MFP M577

Firmware version 2308214_000911 and above: HP LaserJet Enterprise M506

Firmware version 2308214_000905 and above: HP LaserJet Enterprise M527

Firmware version 2308214_000910 and above: HP PageWide Enterprise Color X556

Firmware version 2308214_000923 and above: HP PageWide Enterprise Color MFP X586

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2017-2743
HPdes Security Advisory: HPSBPI03559
https://support.hp.com/us-en/document/c05541569
CopyrightCopyright (C) 2018 Greenbone Networks GmbH

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.