CVE-2021-3965

Опубликовано: 14 янв. 2022

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Certain HP DesignJet products may be vulnerable to unauthenticated HTTP requests which allow viewing and downloading of print job previews.

Ссылки

https://support.hp.com/us-en/document/ish_5268198-5268230-16
Vendor Advisory
https://support.hp.com/us-en/document/ish_5268198-5268230-16
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:hp:designjet_t920_cr355a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t920_cr355a:-:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:o:hp:designjet_t920_cr355b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t920_cr355b:-:*:*:*:*:*:*:*

Конфигурация 3

Одновременно

cpe:2.3:o:hp:designjet_t920_cr354a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t920_cr354a:-:*:*:*:*:*:*:*

Конфигурация 4

Одновременно

cpe:2.3:o:hp:designjet_t930_l2y22a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t930_l2y22a:-:*:*:*:*:*:*:*

Конфигурация 5

Одновременно

cpe:2.3:o:hp:designjet_t930_l2y22b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t930_l2y22b:-:*:*:*:*:*:*:*

Конфигурация 6

Одновременно

cpe:2.3:o:hp:designjet_t930_l2y21a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t930_l2y21a:-:*:*:*:*:*:*:*

Конфигурация 7

Одновременно

cpe:2.3:o:hp:designjet_t930_l2y21b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t930_l2y21b:-:*:*:*:*:*:*:*

Конфигурация 8

Одновременно

cpe:2.3:o:hp:designjet_t1530_l2y24a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t1530_l2y24a:-:*:*:*:*:*:*:*

Конфигурация 9

Одновременно

cpe:2.3:o:hp:designjet_t1530_l2y24b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t1530_l2y24b:-:*:*:*:*:*:*:*

Конфигурация 10

Одновременно

cpe:2.3:o:hp:designjet_t1530_l2y23a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t1530_l2y23a:-:*:*:*:*:*:*:*

Конфигурация 11

Одновременно

cpe:2.3:o:hp:designjet_t2530_l2y25a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t2530_l2y25a:-:*:*:*:*:*:*:*

Конфигурация 12

Одновременно

cpe:2.3:o:hp:designjet_t2530_l2y26a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t2530_l2y26a:-:*:*:*:*:*:*:*

Конфигурация 13

Одновременно

cpe:2.3:o:hp:designjet_t2530_l2y26b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t2530_l2y26b:-:*:*:*:*:*:*:*

Конфигурация 14

Одновременно

cpe:2.3:o:hp:designjet_t3500_b9e24a_firmware:aeneas_04_09_06.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t3500_b9e24a:-:*:*:*:*:*:*:*

Конфигурация 15

Одновременно

cpe:2.3:o:hp:designjet_t3500_b9e24b_firmware:aeneas_04_09_06.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t3500_b9e24b:-:*:*:*:*:*:*:*

Конфигурация 16

Одновременно

cpe:2.3:o:hp:designjet_t3500_b9e25a_firmware:aeneas_04_09_06.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_t3500_b9e25a:-:*:*:*:*:*:*:*

Конфигурация 17

Одновременно

cpe:2.3:o:hp:designjet_z6800_f2s72a_firmware:ptr8_03_07_06.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_z6800_f2s72a:-:*:*:*:*:*:*:*

Конфигурация 18

Одновременно

cpe:2.3:o:hp:designjet_z6800_f2s72ar_firmware:ptr8_03_07_06.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_z6800_f2s72ar:-:*:*:*:*:*:*:*

Конфигурация 19

Одновременно

cpe:2.3:o:hp:designjet_z6800_f2s72b_firmware:ptr8_03_07_06.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_z6800_f2s72b:-:*:*:*:*:*:*:*

Конфигурация 20

Одновременно

cpe:2.3:o:hp:designjet_z6600_f2s71a_firmware:ptr6_03_07_06.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_z6600_f2s71a:-:*:*:*:*:*:*:*

Конфигурация 21

Одновременно

cpe:2.3:o:hp:designjet_z6600_f2s71ar_firmware:ptr6_03_07_06.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_z6600_f2s71ar:-:*:*:*:*:*:*:*

Конфигурация 22

Одновременно

cpe:2.3:o:hp:designjet_z6810_2qu12a_firmware:px8_06_05_02.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_z6810_2qu12a:-:*:*:*:*:*:*:*

Конфигурация 23

Одновременно

cpe:2.3:o:hp:designjet_z6810_2qu12b_firmware:px8_06_05_02.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_z6810_2qu12b:-:*:*:*:*:*:*:*

Конфигурация 24

Одновременно

cpe:2.3:o:hp:designjet_z6810_2qu14a_firmware:px8_06_05_02.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_z6810_2qu14a:-:*:*:*:*:*:*:*

Конфигурация 25

Одновременно

cpe:2.3:o:hp:designjet_z6810_2qu14b_firmware:px8_06_05_02.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_z6810_2qu14b:-:*:*:*:*:*:*:*

Конфигурация 26

Одновременно

cpe:2.3:o:hp:designjet_z6610_2qu13b_firmware:px6_06_05_02.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_z6610_2qu13b:-:*:*:*:*:*:*:*

Конфигурация 27

Одновременно

cpe:2.3:o:hp:designjet_z6610_2qu13a_firmware:px6_06_05_02.1:*:*:*:*:*:*:*

cpe:2.3:h:hp:designjet_z6610_2qu13a:-:*:*:*:*:*:*:*

EPSS

Процентиль: 49%

0.00255

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-639

Связанные уязвимости

GHSA-pf8r-282h-75wr

github

около 4 лет назад

Certain HP DesignJet products may be vulnerable to unauthenticated HTTP requests which allow viewing and downloading of print job previews.

EPSS

Процентиль: 49%

0.00255

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-639