Cross-site scripting (XSS)
A potential security vulnerability has been identified with certain HP LaserJet and Color LaserJet printers. The vulnerability could be exploited to allow cross-site scripting (XSS).
VULNERABILITY SUMMARY
Product Number
|
HP Color LaserJet CM3530
|
HP Color LaserJet CM6030
|
HP Color LaserJet CM6040
|
HP Color LaserJet CP3525
|
HP Color LaserJet CP4025
|
HP Color LaserJet CP4525
|
HP Color LaserJet CP6015
|
LaserJet P3015
|
LaserJet P4014
|
LaserJet P4015
|
LaserJet P4515
|
Reference
|
Base Vector
|
Base Score
|
CVE-2012-3272
|
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
|
4.3
|
Product Number
|
Firmware Version
|
HP Color LaserJet CM3530
|
Update to version 53.190.9
21 Aug 2012 or later |
HP Color LaserJet CM6030
|
Update to version 52.210.9
21 Aug 2012 or later |
HP Color LaserJet CM6040
|
Update to version 52.210.9
21 Aug 2012 or later |
HP Color LaserJet CP3525
|
Update to version 06.140.3 18
18 Jul 2012 or later |
HP Color LaserJet CP4025
|
Update to version 07.120.6
21 Aug 2012 or later |
HP Color LaserJet CP4525
|
Update to version 07.120.6
21 Aug 2012 or later |
HP Color LaserJet CP6015
|
Update to version 04.160.3
18 Jul 2012 or later |
HP LaserJet P3015
|
Update to version 07.140.3
18 Jul 2012 or later |
HP LaserJet P4014
|
Update to version 04.170.3
18 Jul 2012 or later |
HP LaserJet P4015
|
Update to version 04.170.3
18 Jul 2012 or later |
HP LaserJet P4515
|
Update to version 04.170.3
18 Jul 2012 or later |
PI
|
HP Printing and Imaging
|
HF
|
HP Hardware and Firmware
|
GN
|
HP General Software
|