Published: 03/11/2021 Updated: 04/11/2021

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 4.6 | Impact Score: 3.6 | Exploitability Score: 0.9

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

Certain HP LaserJet, HP LaserJet Managed, HP PageWide, and HP PageWide Managed printers may be vulnerable to potential information disclosure.

Vulnerable Product	Search on Vulmon	Subscribe to Product
hp futuresmart 3
hp futuresmart 4
hp futuresmart 5

Visiting a booby-trapped webpage could give attackers code execution privileges on HP network printers

The Register • Gareth Corfield • 30 Nov 2021

Get our weekly newsletter Patches available for 150 affected products

Tricking users into visiting a malicious webpage could allow malicious people to compromise 150 models of HP multi-function printers, according to F-Secure researchers. The Finland-headquartered infosec firm said it had found "exploitable" flaws in the HP printers that allowed attackers to "seize control of vulnerable devices, steal information, and further infiltrate networks in pursuit of other objectives such as stealing or changing other data" – and, inevitably, "spreading ransomware." "In...

CVE-2021-39237

Vulnerability Summary

Vulnerability Trend

Recent Articles

References

Vulmon Search

About

Products

Connect