Details of VAR-202502-3793

ID

VAR-202502-3793

TITLE

HP LaserJet Pro MFP M128fn and HP LaserJet MFP M233sdw have unauthorized access vulnerability

Trust: 0.6

sources: CNVD: CNVD-2025-04759

DESCRIPTION

HP LaserJet Pro MFP M128fn and HP LaserJet MFP M233sdw are both printer products. HP LaserJet Pro MFP M128fn and HP LaserJet MFP M233sdw have an unauthorized access vulnerability that can be exploited by attackers to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2025-04759

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-04759

AFFECTED PRODUCTS

vendor:

model:

development company l.p. hp laserjet pro mfp m128fn

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2025-04759

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2025-04759
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2025-04759
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2025-04759

EXTERNAL IDS

db:

CNVD

id:

CNVD-2025-04759

Trust: 0.6

sources: CNVD: CNVD-2025-04759

SOURCES

db:

CNVD

id:

CNVD-2025-04759

LAST UPDATE DATE

2025-03-21T23:34:51.108000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2025-04759

date:

2025-03-11T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2025-04759

date:

2025-02-24T00:00:00