Lucene search

[email protected]CVE-2021-3942

HistoryDec 12, 2022 - 1:15 p.m.

CVE-2021-3942

2022-12-1213:15:00

CWE-119

[email protected]

web.nvd.nist.gov

print products

digital sending products

vulnerability

remote code execution

buffer overflow

llmnr

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.9 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

72.6%

JSON

Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR.

CPENameOperatorVersion
hp:color_laserjet_cm4540_mfp_cc419a_firmwarehp color laserjet cm4540 mfp cc419a firmwarelt3.9.9
hp:color_laserjet_cm4540_mfp_cc420a_firmwarehp color laserjet cm4540 mfp cc420a firmwarelt3.9.9
hp:color_laserjet_cm4540_mfp_cc421a_firmwarehp color laserjet cm4540 mfp cc421a firmwarelt3.9.9
hp:color_laserjet_cm5525_mfp_ce707a_firmwarehp color laserjet cm5525 mfp ce707a firmwarelt3.9.9
hp:color_laserjet_cm5525_mfp_ce708a_firmwarehp color laserjet cm5525 mfp ce708a firmwarelt3.9.9
hp:color_laserjet_cm5525_mfp_ce709a_firmwarehp color laserjet cm5525 mfp ce709a firmwarelt3.9.9
hp:color_laserjet_m578_mfp_7zu85a_firmwarehp color laserjet m578 mfp 7zu85a firmwarelt4.11.2.3
hp:color_laserjet_m578_mfp_7zu85a_firmwarehp color laserjet m578 mfp 7zu85a firmwarelt5.4
hp:color_laserjet_m578_mfp_7zu86a_firmwarehp color laserjet m578 mfp 7zu86a firmwarelt4.11.2.3
hp:color_laserjet_m578_mfp_7zu86a_firmwarehp color laserjet m578 mfp 7zu86a firmwarelt5.4

CPE	Name	Operator	Version
hp:color_laserjet_cm4540_mfp_cc419a_firmware	hp color laserjet cm4540 mfp cc419a firmware	lt	3.9.9
hp:color_laserjet_cm4540_mfp_cc420a_firmware	hp color laserjet cm4540 mfp cc420a firmware	lt	3.9.9
hp:color_laserjet_cm4540_mfp_cc421a_firmware	hp color laserjet cm4540 mfp cc421a firmware	lt	3.9.9
hp:color_laserjet_cm5525_mfp_ce707a_firmware	hp color laserjet cm5525 mfp ce707a firmware	lt	3.9.9
hp:color_laserjet_cm5525_mfp_ce708a_firmware	hp color laserjet cm5525 mfp ce708a firmware	lt	3.9.9
hp:color_laserjet_cm5525_mfp_ce709a_firmware	hp color laserjet cm5525 mfp ce709a firmware	lt	3.9.9
hp:color_laserjet_m578_mfp_7zu85a_firmware	hp color laserjet m578 mfp 7zu85a firmware	lt	4.11.2.3
hp:color_laserjet_m578_mfp_7zu85a_firmware	hp color laserjet m578 mfp 7zu85a firmware	lt	5.4
hp:color_laserjet_m578_mfp_7zu86a_firmware	hp color laserjet m578 mfp 7zu86a firmware	lt	4.11.2.3
hp:color_laserjet_m578_mfp_7zu86a_firmware	hp color laserjet m578 mfp 7zu86a firmware	lt	5.4

Rows per page:

1-10 of 27811

References

support.hp.com/us-en/document/ish_5948778-5949142-16/hpsbpi03780

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.9 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

72.6%

JSON

Related for CVE-2021-3942

prion1 cvelist1 hp1