Lucene search

[email protected]CVE-2009-1333

HistoryApr 17, 2009 - 2:30 p.m.

CVE-2009-1333

2009-04-1714:30:00

CWE-79

[email protected]

web.nvd.nist.gov

cve-2009-1333

cross-site scripting

xss

hp deskjet 6840

printer

web interface

vulnerability

firmware xf1m131a

post request

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

86.0%

JSON

Cross-site scripting (XSS) vulnerability in refresh_rate.htm in the web interface on the HP Deskjet 6840 printer with firmware XF1M131A allows remote attackers to inject arbitrary web script or HTML via the POST request body.

Affected configurations

NVD

Node

hpdeskjet_6840Matchxf1m131a

CPENameOperatorVersion
hp:deskjet_6840hp deskjet 6840eqxf1m131a

CPE	Name	Operator	Version
hp:deskjet_6840	hp deskjet 6840	eq	xf1m131a

References

osvdb.org/53769

secunia.com/advisories/34702

www.securityfocus.com/archive/1/502620/100/0/threaded

www.securityfocus.com/bid/34480

exchange.xforce.ibmcloud.com/vulnerabilities/49850

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

86.0%

JSON

Related for CVE-2009-1333

prion1 nvd1 cvelist1