4.3
CVSSv2

CVE-2012-3272

Published: 06/12/2012 Updated: 08/01/2013
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

Cross-site scripting (XSS) vulnerability on the HP Color LaserJet CM3530 with firmware prior to 53.190.9, Color LaserJet CM60xx with firmware prior to 52.210.9, Color LaserJet CP3525 with firmware prior to 06.140.3 18, Color LaserJet CP4xxx with firmware prior to 07.120.6, Color LaserJet CP6015 with firmware prior to 04.160.3, LaserJet P3015 with firmware prior to 07.140.3, and LaserJet P4xxx with firmware prior to 04.170.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected Products

Vendor Advisories

A potential security vulnerability has been identified with certain HP LaserJet and Color LaserJet printers The vulnerability could be exploited to allow cross-site scripting (XSS) ...