EPSS
Percentile
99.9%
Remote code execution
A potential security vulnerability has been identified with HP DreamColor Z27x Professional Display running Bash Shell. This is the Bash Shell vulnerability known as “ShellShock” which could be exploited remotely to allow execution of code.
> note:
>
> Only the HP DreamColor Z27x model is vulnerable.
HP is actively working to address this vulnerability for the impacted product versions of HP DreamColor Z27x Professional Display. The display provides calibration and remote management functionality running on embedded Linux, which includes a bash shell. The shell is not accessible via the standard calibration or remote management interfaces.
This bulletin will be revised when the firmware update is released.
EPSS
Percentile
99.9%