Page 2 of 8 results (0.002 seconds)

CVSS: 9.8EPSS: 0%CPEs: 488EXPL: 0

Insufficient Solution DLL Signature Validation allows potential execution of arbitrary code in HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP OfficeJet Enterprise printers before 2308937_578479, 2405087_018548, and other firmware versions. Una validación insuficiente de firmas de soluciones DLL permite la ejecución potencial de código arbitrario en impresoras HP LaserJet Enterprise, HP PageWide Enterprise, HP LaserJet Managed y HP OfficeJet Enterprise en versiones anteriores a la 2308937_578479, 2405087_018548 y otras. • http://www.securityfocus.com/bid/101965 https://support.hp.com/us-en/document/c05839270 • CWE-20: Improper Input Validation •

CVSS: 6.1EPSS: 0%CPEs: 176EXPL: 0

HP has identified a potential security vulnerability with HP Enterprise LaserJet Printers and MFPs, HP OfficeJet Enterprise Color Printers and MFP, HP PageWide Color Printers and MPS before 2308214_000901, 2308214_000900, and other firmware versions. The vulnerability could be exploited to perform a cross site scripting (XSS) attack. HP ha identificado una vulnerabilidad de seguridad potencial con HP Enterprise LaserJet Printers and MFPs, HP OfficeJet Enterprise Color Printers and MFP, HP PageWide Color Printers and MPS en versiones anteriores a la 2308214_000901, 2308214_000900, y otras versiones de firmware. Esto podría ser explotado para realizar un ataque de Cross-Site Scripting (XSS). • https://support.hp.com/us-en/document/c05541569 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.9EPSS: 0%CPEs: 55EXPL: 0

HP LaserJet printers and MFPs and OfficeJet Enterprise printers with firmware before 3.7.01 allow remote attackers to obtain sensitive information via unspecified vectors. Impresoras HP LaserJet e impresoras MFPs OfficeJet Enterprise con firmware anterior a 3.7.01 permiten a atacantes remotos obtener información sensible a través de vectores no especificados. • http://www.securitytracker.com/id/1035191 https://h20565.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c05030353 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •