Details of VAR-202105-1629

ID

VAR-202105-1629

TITLE

Unauthorized access vulnerability exists in HP Officejet Pro printer management page

Trust: 0.6

sources: CNVD: CNVD-2021-30056

DESCRIPTION

Hewlett-Packard Trading (Shanghai) Co., Ltd. was registered and established in the Free Trade Zone Market Supervision Administration on February 8, 1999. The company's business scope includes computer equipment, printing equipment, imaging equipment, electronic products and related parts and components of the above products. An unauthorized access vulnerability exists in the HP Officejet Pro printer management page. Attackers can use the vulnerability to access the printer console interface to operate without logging in

Trust: 0.6

sources: CNVD: CNVD-2021-30056

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-30056

AFFECTED PRODUCTS

vendor:

hp trading

model:

officejet pro printer management page

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2021-30056

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-30056
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2021-30056
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-30056

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-30056

Trust: 0.6

sources: CNVD: CNVD-2021-30056

SOURCES

db:

CNVD

id:

CNVD-2021-30056

LAST UPDATE DATE

2022-05-04T10:07:09.066000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-30056

date:

2021-04-23T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-30056

date:

2021-05-25T00:00:00