Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2009-0940

🗓️ 18 Mar 2009 20:35:00Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov👁 72 Views🌐 WEB

HP Embedded Web Server (EWS) CSRF vulnerabilitie

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
Cvelist		CVE-2009-0940
18 Mar 200920:35
cvelist
EUVD		EUVD-2009-0937
7 Oct 202500:30
euvd
NVD		CVE-2009-0940
18 Mar 200921:00
nvd
Prion		Cross site request forgery (csrf)
18 Mar 200921:00
prion
Tenable Nessus		HP Printer Cross-Site Request Forgery (CVE-2009-0940)
30 Apr 202600:00
nessus
NVD
Node
hp8100c_digital_senderMatch-
OR
hp9100c_digital_senderMatch-
OR
hp9200c_digital_senderMatch-
OR
hp9250c_digital_senderMatch-
OR
hpcolor_laserjet
OR
hpcolor_laserjet_1500
OR
hpcolor_laserjet_2500
OR
hpcolor_laserjet_2500l
OR
hpcolor_laserjet_2500lse
OR
hpcolor_laserjet_2500n
OR
hpcolor_laserjet_2500tn
OR
hpcolor_laserjet_2605dtn
OR
hpcolor_laserjet_4370mfpMatch20081211_46.211.2
OR
hpcolor_laserjet_4600
OR
hpcolor_laserjet_4600dn
OR
hpcolor_laserjet_4600dtn
OR
hpcolor_laserjet_4600hdn
OR
hpcolor_laserjet_4650
OR
hpcolor_laserjet_4700
OR
hpcolor_laserjet_4730_mfp
OR
hpcolor_laserjet_5500
OR
hpcolor_laserjet_5550
OR
hpcolor_laserjet_8500
OR
hpcolor_laserjet_8550
OR
hpcolor_laserjet_9500
OR
hpcolor_laserjet_9500_mfp
OR
hpcolor_laserjet_9500mfpMatch20070719_05.011.2
OR
hpcolor_mfp_cm8050Match--edgeline
OR
hpcolor_mfp_cm8060Match--edgeline
OR
hpdigital_senders
OR
hpedgeline_printers
OR
hplaserjet_1000
OR
hplaserjet_1005
OR
hplaserjet_1010
OR
hplaserjet_1012
OR
hplaserjet_1015
OR
hplaserjet_1018
OR
hplaserjet_1018s
OR
hplaserjet_1020
OR
hplaserjet_1020_plus
OR
hplaserjet_1022
OR
hplaserjet_1022n
OR
hplaserjet_1022nw
OR
hplaserjet_1100
OR
hplaserjet_1150
OR
hplaserjet_1160
OR
hplaserjet_1200
OR
hplaserjet_1300
OR
hplaserjet_1320
OR
hplaserjet_2
OR
hplaserjet_2000
OR
hplaserjet_2100
OR
hplaserjet_2200
OR
hplaserjet_2200dtn
OR
hplaserjet_2300
OR
hplaserjet_2300dn
OR
hplaserjet_2400
OR
hplaserjet_2410Match20070410_08.112.3
OR
hplaserjet_2420Match20070410_08.112.3
OR
hplaserjet_2430
OR
hplaserjet_2430Match20070410_08.112.3
OR
hplaserjet_2500
OR
hplaserjet_2500c
OR
hplaserjet_2600c
OR
hplaserjet_2600n
OR
hplaserjet_3000
OR
hplaserjet_3700
OR
hplaserjet_4
OR
hplaserjet_4/4m
OR
hplaserjet_4_plus/m_plus
OR
hplaserjet_4000
OR
hplaserjet_4000n
OR
hplaserjet_4050
OR
hplaserjet_4100
OR
hplaserjet_4100_mfp
OR
hplaserjet_4100mfp
OR
hplaserjet_4200
OR
hplaserjet_4200dtn
OR
hplaserjet_4200ln
OR
hplaserjet_4240
OR
hplaserjet_4240n
OR
hplaserjet_4250
OR
hplaserjet_4250Match20080319_08.015.0
OR
hplaserjet_4300
OR
hplaserjet_4345_mfp
OR
hplaserjet_4345mfpMatch20081211_09.131.1
OR
hplaserjet_4350
OR
hplaserjet_4350Match20080319_08.015.0
OR
hplaserjet_4350dtn
OR
hplaserjet_4650dn
OR
hplaserjet_4l/ml
OR
hplaserjet_4m_plus
OR
hplaserjet_4p/mp
OR
hplaserjet_4si
OR
hplaserjet_4v/mv
OR
hplaserjet_5
OR
hplaserjet_5/m/n
OR
hplaserjet_500_plus
OR
hplaserjet_5000
OR
hplaserjet_5000Matchr.25.15
OR
hplaserjet_5000Matchr.25.47
OR
hplaserjet_5100
OR
hplaserjet_5100Matchv.29.12
OR
hplaserjet_5100dtn
OR
hplaserjet_5200
OR
hplaserjet_5l
OR
hplaserjet_5m
OR
hplaserjet_5p/mp
OR
hplaserjet_5si
OR
hplaserjet_8000
OR
hplaserjet_8100
OR
hplaserjet_8150
OR
hplaserjet_8150dn
OR
hplaserjet_9000
OR
hplaserjet_9000_mfp
OR
hplaserjet_9000mfp
OR
hplaserjet_9040
OR
hplaserjet_9040Match20080204_08.110.0
OR
hplaserjet_9040mfp
OR
hplaserjet_9040mfpMatch20080204_08.110.0
OR
hplaserjet_9050
OR
hplaserjet_9050Match20080204_08.110.0
OR
hplaserjet_9050_mfp
OR
hplaserjet_9050mfp
OR
hplaserjet_9050mfpMatch20080204_08.110.0
OR
hplaserjet_9055
OR
hplaserjet_9065
OR
hplaserjet_9500
OR
hplaserjet_9500mfp
OR
hplaserjet_ii
OR
hplaserjet_iid
OR
hplaserjet_iii
OR
hplaserjet_iiid
OR
hplaserjet_iiip
OR
hplaserjet_iiisi
OR
hplaserjet_iip
OR
hplaserjet_iip_plus
OR
hplaserjet_m1522n_mfp
OR
hplaserjet_m3027_mfp
OR
hplaserjet_m3035_mfp
OR
hplaserjet_m4345_mfp
OR
hplaserjet_m5025_mfp
OR
hplaserjet_m5035_mfp
OR
hplaserjet_p1000
OR
hplaserjet_p1005
OR
hplaserjet_p1006
OR
hplaserjet_p1007
OR
hplaserjet_p1008
OR
hplaserjet_p1009
OR
hplaserjet_p1500
OR
hplaserjet_p1505
OR
hplaserjet_p1505n
OR
hplaserjet_p2000
OR
hplaserjet_p2010
OR
hplaserjet_p2015
OR
hplaserjet_p2030
OR
hplaserjet_p2050
OR
hplaserjet_p3000
OR
hplaserjet_p3005
OR
hplaserjet_p4010
OR
hplaserjet_p4014
OR
hplaserjet_p4015
OR
hplaserjet_p4500
OR
hplaserjet_p4510
ParameterPositionPathDescriptionCWE
NetIPChangepathhp/device/config_result_YesNo.html/configCSRF enables modification of network configuration via NetIPChange on HP EWS.CWE-352
Passwordpathhp/device/set_config_password.html/configCSRF enables changing administrator password via Password and ConfirmPassword parameters.CWE-352
ConfirmPasswordpathhp/device/set_config_password.html/configCSRF enables changing administrator password via Password and ConfirmPassword parameters.CWE-352

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
23 Apr 2026 00:35Current
7.5High risk
Vulners AI Score7.5
CVSS 25.1
EPSS0.00837
CWE-352
cve-2009-0940cross-site request forgerycsrfhpembedded web serverewslaserjet printersedgeline printersdigital sendersremote attackintranet connectivitynetwork configurationpassword changenvd
72