Описание
ChaiVM EZloader for HP color LaserJet 4500 and 4550 and HP LaserJet 4100 and 8150 does not properly verify JAR signatures for new services, which allows local users to load unauthorized Chai services.
Ссылки
- Broken LinkPatchThird Party AdvisoryVDB EntryVendor Advisory
- Broken Link
- Broken LinkVendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkPatchThird Party AdvisoryVDB EntryVendor Advisory
- Broken Link
- Broken LinkVendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:hp:chaivm_ezloader:-:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:hp:laserjet_4100:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:laserjet_4500:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:laserjet_4550:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:laserjet_8150:-:*:*:*:*:*:*:*
EPSS
Процентиль: 19%
0.00061
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-347
CWE-347
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
ChaiVM EZloader for HP color LaserJet 4500 and 4550 and HP LaserJet 4100 and 8150 does not properly verify JAR signatures for new services, which allows local users to load unauthorized Chai services.
EPSS
Процентиль: 19%
0.00061
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-347
CWE-347