CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
Confidence
High
EPSS
Percentile
79.9%
The remote upgrade capability in HP LaserJet 4200 and 4300 printers does not require a password, which allows remote attackers to upgrade firmware.
Vendor | Product | Version | CPE |
---|---|---|---|
hp | color_laserjet | 4650 | cpe:2.3:h:hp:color_laserjet:4650:*:*:*:*:*:*:* |
hp | color_laserjet | 5500 | cpe:2.3:h:hp:color_laserjet:5500:*:*:*:*:*:*:* |
hp | color_laserjet | 5550 | cpe:2.3:h:hp:color_laserjet:5550:*:*:*:*:*:*:* |
hp | color_laserjet_4600 | * | cpe:2.3:h:hp:color_laserjet_4600:*:*:*:*:*:*:*:* |
hp | laserjet_2500 | * | cpe:2.3:h:hp:laserjet_2500:*:*:*:*:*:*:*:* |
hp | laserjet_3000 | * | cpe:2.3:h:hp:laserjet_3000:*:*:*:*:*:*:*:* |
hp | laserjet_3700 | * | cpe:2.3:h:hp:laserjet_3700:*:*:*:*:*:*:*:* |
hp | laserjet_4100_mfp | * | cpe:2.3:h:hp:laserjet_4100_mfp:*:*:*:*:*:*:*:* |
hp | laserjet_4200 | * | cpe:2.3:h:hp:laserjet_4200:*:*:*:*:*:*:*:* |
hp | laserjet_4300 | * | cpe:2.3:h:hp:laserjet_4300:*:*:*:*:*:*:*:* |