Cross Site Scripting (XSS)
Reported by: Jerry Decime
HP has identified a potential security vulnerability with certain HP printers. The vulnerability could be exploited to perform a cross site scripting (XSS) attack.
VULNERABILITY SUMMARY
Reference
|
Base Vector
|
Base Score
|
CVE-2017-2743
|
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:H
|
7.5 High
|
Product Name
|
Model
|
Firmware update version
|
HP Color LaserJet CM4540 MFP
|
CC419A, CC420A, CC421A
|
v 2308214_000901 (or higher)
|
HP Color LaserJet CP5525
|
CE707A,CE708A,CE709A
|
v 2308214_000900 (or higher)
|
HP LaserJet Enterprise M4555 MFP
|
CE503A, CE504A, CE738A
|
v 2308214_000904 (or higher)
|
HP LaserJet Enterprise 600 M601
|
CE989A, CE990A
|
v 2308214_000926 (or higher)
|
HP LaserJet Enterprise 600 M602
|
CE991A, CE992A, CE993A
|
v 2308214_000926 (or higher)
|
HP LaserJet Enterprise 600 M603xh
|
CE994A, CE995A, CE996A
|
v 2308214_000926 (or higher)
|
HP LaserJet Enterprise Color 500 M551 Series
|
CF081A,CF082A,CF083A
|
v 2308214_000927 (or higher)
|
HP Scanjet Enterprise 8500 Document Capture Workstation
|
L2717A
|
v 2308214_000903 (or higher)
|
HP LaserJet Enterprise 500 color MFP M575dn
|
CD644A, CD645A
|
v 2308214_000925 (or higher)
|
HP LaserJet Enterprise 500 MFP M525f
|
CF116A, CF117A
|
v 2308214_000913 (or higher)
|
HP LaserJet Enterprise 700 color MFP M775 series
|
CC522A, CC523A, CC524A
|
v 2308214_000932 (or higher)
|
HP LaserJet Enterprise 700 M712xh
|
CF235A, CF236A, CF238A
|
v 2308214_000922 (of higher)
|
HP LaserJet Enterprise color flow MFP M575c
|
CD646A
|
v 2308214_000925 (or higher)
|
HP LaserJet Enterprise flow MFP M525c
|
CF118A
|
v 2308214_000913 (or higher)
|
HP LaserJet Enterprise MFP M725
|
CF066A, CF067A, CF068A, CF069A
|
v 2308214_000921 (or higher)
|
HP Color LaserJet Enterprise M750
|
D3L08A, D3L09A, D3L10A
|
v 2308214_000931 (or higher)
|
HP LaserJet Enterprise 800 color M855
|
A2W77A, A2W78A, A2W79A
|
v 2308214_000930 (or higher)
|
HP LaserJet Enterprise 800 color MFP M880
|
A2W76A, A2W75A, D7P70A, D7P71A
|
v 2308214_000928 (or higher)
|
HP LaserJet Enterprise flow M830z MFP
|
CF367A
|
v 2308214_000916 (or higher)
|
HP LaserJet Enterprise M806
|
CZ244A, CZ245A
|
v 2308214_000920 (or higher)
|
HP Color LaserJet Enterprise M651
|
CZ255A, CZ256A, CZ257A, CZ258A
|
v 2308214_000929 (or higher)
|
HP Color LaserJet M680
|
CZ250A, CZ251A
|
v 2308214_000915 (or higher)
|
HP OfficeJet Enterprise Color MFP X585
|
B5L04A, B5L05A, B5L07A
|
v 2308214_000902 (or hihger)
|
HP OfficeJet Enterprise Color X555
|
C2S11A, C2S12A
|
v 2308214_000906 (or higher)
|
HP LaserJet Enterprise MFP M630
|
J7X28A
|
v 2308214_000912 (or higher)
|
HP Color LaserJet Enterprise M552
|
B5L23A
|
v 2308214_000907 (or higher)
|
HP Color LaserJet Enterprise M553
|
B5L24A, B5L25A, B5L26A
|
v 2308214_000907 (or higher)
|
HP LaserJet Enterprise M604
|
E6B67A, E6B68A
|
v 2308214_000908 (or higher)
|
HP LaserJet Enterprise M605
|
E6B69A, E6B70A, E6B71A
|
v 2308214_000908 (or higher)
|
HP LaserJet Enterprise M606
|
E6B72A, E6B73A
|
v 2308214_000908 (or higher)
|
HP LaserJet Enterprise Flow MFP M630z
|
B3G85A
|
v 2308214_000912 (or higher)
|
HP Color LaserJet Enterprise MFP M577
|
B5L46A, B5L47A, B5L48A
|
v 2308214_000909 (or higher)
|
HP LaserJet Enterprise M506
|
2A68A, F2A69A, F2A70A, F2A71A
|
v 2308214_000911 (or higher)
|
HP LaserJet Enterprise M527
|
F2A76A, F2A77A, F2A81A
|
v 2308214_000905 or higher)
|
HP PageWide Enterprise Color X556
|
G1W46A, G1W46V, G1W47A, G1W47V, L3U44A
|
v 2308214_000910 (or higher)
|
HP PageWide Enterprise Color MFP X586
|
G1W40A, G1W39A, G1W41A, L3U43A, L3U42A
|
v 2308214_000923 (or higher)
|
PI
|
HP Printing and Imaging
|
HF
|
HP Hardware and Firmware
|
ST
|
HP Storage Software
|
GN
|
HP General Software
|