Remote unauthorized access to data, cross site scripting (XSS)
Potential security vulnerabilities have been identified with certain HP Photosmart printers. These vulnerabilities could be exploited remotely for cross site scripting (XSS) or to gain unauthorized access to data or printer configuration information.
VULNERABILITY SUMMARY
HP Photosmart D110 series
|
HP Photosmart B110 series
|
HP Photosmart Plus B210 series
|
HP Photosmart Premium C310 series
|
HP Photosmart Premium Fax All-in-One
|
HP Photosmart Premium C510 series
|
HP ENVY 100 D410 series
|
Reference
|
Base Vector
|
Base Score
|
CVE-2010-1531
|
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
|
4.3
|
CVE-2010-1532
|
(AV:N/AC:L/Au:N/C:P/I:P/A:N)
|
6.4
|
CVE-2010-1533
|
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
|
4.3
|
PI
|
HP Printing and Imaging
|
HF
|
HP Hardware and Firmware
|
GN
|
HP General Software
|