Lucene search
HistoryDec 09, 2013 - 6:55 p.m.
CVE-2013-6427
cve-2013-6427
hp
linux
imaging
printing
hplip
rce
remote code execution
nvd
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.2 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
77.4%
upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing (HPLIP) 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary code by gaining control over the client-server data stream.
Affected configurations
Node
hplinux_imaging_and_printing_projectMatch3.9.2
ORhplinux_imaging_and_printing_projectMatch3.9.4
ORhplinux_imaging_and_printing_projectMatch3.9.4b
ORhplinux_imaging_and_printing_projectMatch3.9.4b
ORhplinux_imaging_and_printing_projectMatch3.9.6
ORhplinux_imaging_and_printing_projectMatch3.9.8
ORhplinux_imaging_and_printing_projectMatch3.9.10
ORhplinux_imaging_and_printing_projectMatch3.9.12
ORhplinux_imaging_and_printing_projectMatch3.10.2
ORhplinux_imaging_and_printing_projectMatch3.10.5
ORhplinux_imaging_and_printing_projectMatch3.10.6
ORhplinux_imaging_and_printing_projectMatch3.10.9
ORhplinux_imaging_and_printing_projectMatch3.11.1
ORhplinux_imaging_and_printing_projectMatch3.11.3
ORhplinux_imaging_and_printing_projectMatch3.11.3a
ORhplinux_imaging_and_printing_projectMatch3.11.3a
ORhplinux_imaging_and_printing_projectMatch3.11.5
ORhplinux_imaging_and_printing_projectMatch3.11.7
ORhplinux_imaging_and_printing_projectMatch3.11.10
ORhplinux_imaging_and_printing_projectMatch3.11.12
ORhplinux_imaging_and_printing_projectMatch3.12.2
ORhplinux_imaging_and_printing_projectMatch3.12.4
ORhplinux_imaging_and_printing_projectMatch3.12.6
ORhplinux_imaging_and_printing_projectMatch3.12.9
ORhplinux_imaging_and_printing_projectMatch3.12.10
ORhplinux_imaging_and_printing_projectMatch3.12.10a
ORhplinux_imaging_and_printing_projectMatch3.12.11
ORhplinux_imaging_and_printing_projectMatch3.13.2
ORhplinux_imaging_and_printing_projectMatch3.13.3
ORhplinux_imaging_and_printing_projectMatch3.13.4
ORhplinux_imaging_and_printing_projectMatch3.13.5
ORhplinux_imaging_and_printing_projectMatch3.13.6
ORhplinux_imaging_and_printing_projectMatch3.13.7
ORhplinux_imaging_and_printing_projectMatch3.13.8
ORhplinux_imaging_and_printing_projectMatch3.13.9
ORhplinux_imaging_and_printing_projectMatch3.13.10
Related
ubuntucve
ubuntucve
CVE-2013-6427
2013-12-09 00:00:00
cvelist
cvelist
CVE-2013-6427
2013-12-09 18:00:00
openvas
openvas
Slackware: Security Advisory (SSA:2013-339-04)
2022-04-21 00:00:00
Ubuntu Update for hplip USN-2085-1
2014-01-27 00:00:00
Ubuntu: Security Advisory (USN-2085-1)
2014-01-27 00:00:00
nessus
nessus
Slackware 14.0 : hplip (SSA:2013-339-04)
2013-12-06 00:00:00
openSUSE Security Update : hplip (openSUSE-SU-2014:0127-1)
2014-06-13 00:00:00
nvd
nvd
CVE-2013-6427
2013-12-09 18:55:10
slackware
slackware
[slackware-security] hplip
2013-12-06 04:51:59
prion
prion
Spoofing
2013-12-09 18:55:00
debiancve
debiancve
CVE-2013-6427
2013-12-09 18:55:10
ubuntu
ubuntu
HPLIP vulnerabilities
2014-01-21 00:00:00
mageia
mageia
Updated hplip package fixes security vulnerabilities
2014-02-05 19:27:44
securityvulns
securityvulns
[SECURITY] [DSA 2829-1] hplip security update
2014-01-09 00:00:00
hplip multiple security vulnerabilities
2014-01-09 00:00:00
debian
debian
[SECURITY] [DSA 2829-1] hplip security update
2013-12-28 17:56:43
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.2 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
77.4%
Related for CVE-2013-6427