Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2014-7895

Опубликовано: 09 мар. 2015
Источник: nvd
CVSS2: 10
EPSS Средний

Описание

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSCashDrawer.ocx for PUSB Thermal Receipt printers, SerialUSB Thermal Receipt printers, Hybrid POS printers with MICR, Value PUSB Receipt printers, Value Serial/USB Receipt printers, and USB Standard Duty cash drawers, aka ZDI-CAN-2505.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:hp:ole_point_of_sale_driver:*:*:*:*:*:*:*:*
Версия до 1.13.001 (включая)

Одно из

cpe:2.3:h:hp:hybrid_pos_printer_with_micr_us_fk184aa:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:pusb_thermal_receipt_printer_f7m67aa:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:pusb_thermal_receipt_printer_fk224aa:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:serialusb_thermal_receipt_printer_bm476aa:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:usb_standard_duty_cash_drawer_e8e45aa:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:value_serial\/usb_receipt_printer_f7m66aa:-:*:*:*:*:*:*:*

EPSS

Процентиль: 96%
0.28809
Средний

10 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

github логотип

GHSA-x6p8-m4g7-q65h

github
больше 3 лет назад

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSCashDrawer.ocx for PUSB Thermal Receipt printers, SerialUSB Thermal Receipt printers, Hybrid POS printers with MICR, Value PUSB Receipt printers, Value Serial/USB Receipt printers, and USB Standard Duty cash drawers, aka ZDI-CAN-2505.

EPSS

Процентиль: 96%
0.28809
Средний

10 Critical

CVSS2

Дефекты

NVD-CWE-noinfo